Systems and methods for cost altering payment services

ABSTRACT

Cost altering payment services (“CAPS”) system in association with a distributed enhanced payment (“DEP”) processing system includes a merchant point of sale (“POS”) terminal system and a remote enhanced payment management system (“EPMS”). The remote EPMS receives payment transactions including additional risk mitigating payment transaction (“RMPT”) information and based on that additional RMPT information provides altered transaction costs. The remote EPMS provides facilities for the merchant to review and revise payment management services so as to utilize additional RMPT information received from the merchant POS terminal system so as to alter transaction costs. Such facilities provide information to determine the relative potential transaction cost benefits of various payment management service sets utilizing cost profiles that represent the costs of archival, recorded and projected future transactions. The remote EPMS provides “transaction guidance” technology to be utilized by the merchant&#39;s POS terminal system to facilitate prompting for and acquiring additional RMPT information.

CROSS REFERENCE TO RELATED APPLICATIONS

This application is a continuation-in-part of application Ser. No.13/563,534, filed on Jul. 31, 2012, entitled “Systems and Methods forMulti-Merchant Tokenization”, which application is incorporated hereinin its entirety by this reference.

BACKGROUND

This invention relates generally to systems and methods for costaltering payment services (“CAPS”), including receiving additional riskmitigating payment transaction (“RMPT”) information; and altering apayment transaction cost based on the received additional RMPTinformation.

Errors and fraud are key risk elements in controlling costs for paymentprocessing. Lowering the incidence of errors and fraud may lead to lowerpayment processing costs, which in turn may help lower paymentmanagement service fees. Risk of error may be minimized by providingcorrect payment transaction information that may be substantiallyverifiable by the payment processor and/or the payer entity. Typicallythis may be done by a point of sale terminal system (“POS system”)including items of information in a payment transaction that may beconsistent with verifiable information pre-associated with the purchaserand/or merchant account. In order to minimize errors, the focusessentially is on the quality of the information.

Unfortunately, in the instance of fraud, the quality of the paymenttransaction information may be error free, but the purchaser may besomeone other than the “legitimate payment account user” (i.e., theaccount owner or authorized account user). Therefore, to mitigate fraudrisk, the quantity of payment transaction information may be importantin combination with the quality of that information.

Given the increasing popularity of both on-line and telephone assistedpurchasing, electronic payment information such as primary accountnumber, account owner's name, expiration date, billing address and cardverification code (e.g., three or four digit code such as CVC, CVV,etc.) are easily subject to compromise and cannot be relied upon toprovide consistent account security. Shared secrets are also subject tocompromise, but some forms such as a password can be changed so as toend the compromise and restore security. New technologies such asgeo-location and biometrics are potential candidates to augment moretraditional purchaser credentials. However, regardless of thetechnology, fraudsters will come up with ways to compromise or defeatnew technologies. Therefore, it is increasingly clear that paymentsecurity mechanisms need to evolve to be more adaptable and more easilypropagated (as opposed to being nearly static and difficult to fieldquickly and broadly). POS systems are essential to any such evolution ofsecurity. Some POS systems may need to be replaced outright, but manymay be updated to support new security features. But in order for thatto happen, merchants need to be motivated to invest both money and time.

Lowering a merchant's payment transaction costs is a powerful andeffective means to motivate that merchant. However, lowering paymenttransaction costs can hurt the revenues of the merchant's paymentmanagement service provider. Fortunately, when payment managementservice is considered as a form of arbitrage, a potential win-winproposition is possible. If the payment management service provider canlower their own payment processing costs by decreasing the risk of errorand fraud, they can then share a portion of that cost savings bylowering the payment transaction costs charged to the merchant.

In addition to having the means to motivate a merchant to improvepayment security, the payment management service provider also needsways to inform the merchant; and then having both informed and motivatedthe merchant, needs ways to enable the merchant to acquire and provideadditional RMPT information. In some instances, additional RMPTinformation may be electronically readable from the payment implement,but in many instances, the purchaser may need to be prompted by the POSsystem operator (or automated terminal). To some extent this is alreadybeing done. For example, many gasoline pumps prompt for billing zip codewhen fuel is purchased with a credit card.

The increasing popularity of various forms of virtual electronic paymentsuch as Google Wallet, Dwolla and PayPal may cause some merchants toupdate their POS systems to distributed enhanced payment compatiblesystems that may be updated with down-loadable technology. But manymerchants, particularly sole proprietors with smaller, older and/or moreprimitive POS systems may be unaware that their POS systems may beproviding a smaller than possible amount of RMPT information andtherefore unnecessarily inflates the merchants' transaction costs. Manysuch merchants deal with intermediaries such as POS system developers orindependent sales organizations; and therefore such intermediaries needto be informed of the cost saving potential of providing additional RMPTinformation and also motivated to spread information and encouragementto their merchant customers.

The enhanced payment management system (“EPMS”) is a key component of aCAPS system. In addition to providing facilities to support the paymenttransactions of a CAPS system, the EPMS may also provide facilities fordetermining potential cost benefits of providing additional RMPTinformation prior to making changes to the merchant's payment managementservices (“the service set”) and corresponding changes to the merchant'sPOS system. Given that the merchant's cash flow is at stake, the typicalmerchant may be loath to make changes without a strong likelihood ofcost savings. Such a facility for determining potential cost benefitsmay be useful to both merchants and merchant-associated intermediariessuch as independent sales organizations and POS system developer.

In order to communicate additional RMPT information from the POS systemto the EPMS, the operation of the POS system must be adapted. The EPMSmay facilitate such adaptation with “transaction guidance”. Distributedenhanced payment processing system compatible POS systems may receivetransaction guidance in the form of down-loadable technology.Transaction guidance may also be propagated by less immediate means, forinstance utilizing specifications, sample code and API documentation.

Additionally, having revised the service set and updated the POS systemto acquire and provide additional RMPT information that the EMPS mayutilize so as to alter transaction costs, the merchant and anyassociated intermediaries may have a very strong interest in seeing ademonstrable cost benefit. Therefore, the EPMS may provide paymenttransaction cost information back to the merchant.

In order to acquire RMPT information so as to decrease the incidence oferrors and fraud, a CAPS system may serve merchants and associatedintermediaries by informing, motivating, enabling, benefiting andconfirming beneficial results. Sharing additional RMPT information-basedtransaction cost alterations may be a major motivator. However,alternative factors, such as an increase in charge backs, may serve asmotivation. Additionally, even if the merchant revises the service setand updates the POS system to acquire additional RMPT information, thatdoes not mean purchasers will provide that additional RMPT information.Nonetheless, the costs of error and fraud will continue to increase andso chip away at the merchant's bottom line.

It is therefore apparent that an urgent need exists for systems andmethods for receiving additional RMPT information; and for altering apayment transaction cost based on the received additional RMPTinformation. Once the merchant has selected a service set that includestransaction cost altering based on receiving additional RMPTinformation, transaction guidance may be provided that facilitates theacquiring of additional RMPT information by the merchant POS terminalsystem. Such a service set may be selected at the time of merchantboarding or subsequent to merchant boarding. Cost profiles and costindices may be provided that facilitate merchant consideration of thepotential cost altering benefits of different service sets. CAPS systemsserve a need that is fundamental and undeniable by allowing merchants toalter payment transaction costs by acquiring additional RMPT informationand including that information in payment transaction requests receivedby the EPMS within a CAPS system so as to alter payment transactioncosts.

SUMMARY

To achieve the foregoing and in accordance with the present invention,systems and methods for cost altering payment services (“CAPS”) inassociation with a system of distributed enhanced payment (“DEP”)processing with multi-merchant tokenization are provided. Such systemsand methods enable merchant customers of payment management serviceproviders to select payment management services in such a way that themerchant point of sale (“POS”) terminal system may potentially acquireadditional risk mitigating payment transaction (“RMPT”) information thatmay be included in payment transaction requests that are received by thepayment management service provider's enhanced payment management system(“EPMS”) and result in altered transaction costs.

Most any POS terminal system may interoperate as part of a CAPS systemto transact payments. However, as part of a multi-merchant tokenizationsystem, CAPS provides a more cost-efficient means to enable increasedsecurity for payments and transactions; provides for more seamlesstransactions across groups of related merchants; and enable groups ofrelated merchants as well as merchants in general to provide a broaderrange of payment related services than those available from traditionalcredit and debit payment card providers alone. Additionally, suchsystems and methods provide merchants greater control over theprocessing of electronic payments via Arbitraged Enhanced Payment(“AEP”) services including, but not limited to, how rapidly a givenpayment is processed and/or what entity processes a given payment, andtherefore how much the payment processing costs.

Furthermore, as part of a distributed enhanced payment (“DEP”)processing system, CAPS provides automated means to updateDEP-compatible POS terminal systems to more quickly and easily adapt torevised payment management service sets and correspondingly revisedfacilities to acquire additional RMPT information. Additionally, as partof a DEP processing system, the benefits of CAPS apply to processing ofvirtual electronic payment (“VEP”) such as PayPal, as well as toprocessing of traditional card brand (“TCB”) payments (i.e., credit anddebit cards).

In one embodiment, a payment management service provider's EPMS as partof a computerized CAPS system is configured via a service set of paymentmanagement services to receive additional risk mitigating paymenttransaction information and to alter payment transaction costs based onthe additional RMPT information.

The EPMS assists the merchant in analyzing various alternative serviceset configurations resulting in varying degrees of potential paymenttransaction cost alteration. Cost profiles and cost indices usedindividually or in combination provide visualization tools. Futurepayment transaction costs are projected using real and hypotheticalpayment transaction records. The merchant selects a service set. Themerchant can re-analyze costs and revise the service set from time totime as desired.

The EPMS provides “transaction guidance”, i.e., down-loadable (and/oralternately propagated technology) that facilitates the POS terminalsystem to prompt for and acquire additional RMPT information.

The EPMS utilizes additional RMPT information received from the POSterminal system to effectuate processing of the payment transactionrequest at a preferential rate. Cost savings accrue to the paymentmanagement service provider, but can be shared with the merchant so asto motivate the merchant to attempt to acquire additional RMPTinformation and to improve the quality of such information.

The EPMS provides transaction cost information to the POS terminalsystem (and potentially to merchant intermediaries) in order to give themerchant feedback on cost alterations actually realized. Those realizedcost alterations can be more or less than those projected, partiallybecause additional RMPT information requested of a purchaser is notnecessarily provided and can be of varying quality.

In some embodiments, the merchant utilizes the POS terminal system toanalyze projected and/or realized costs and/or to revise the service setto adjust the amount of additional RMPT information to be acquired andutilized. In other embodiments, the merchant utilizes an alternativeterminal device—such as a PC connected via the internet—to utilize costanalysis and service set revision facilities provided by the EPMS. Formore primitive or more generic POS terminal systems, transactionguidance is obtained occasionally through POS developer technologyupdates. Also, some merchants may not be fully informed or skilled inutilizing the CAPS system. Therefore, in some embodiments, the EPMSautomatically utilizes additional RMPT information that is received inorder to alter payment transaction costs.

Note that the various features of the present invention described abovemay be practiced alone or in combination. These and other features ofthe present invention will be described in more detail below in thedetailed description of the invention and in conjunction with thefollowing figures.

BRIEF DESCRIPTION OF THE DRAWINGS

In order that the present invention may be more clearly ascertained,some embodiments will now be described, by way of example, withreference to the accompanying drawings, in which:

FIG. 1 is an example schematic block diagram for a system formulti-merchant tokenization, in accordance with some embodiments;

FIG. 2 is an example schematic block diagram for a more detailed view ofcomponents within the tokenization and payment management system, inaccordance with some embodiments;

FIG. 3 is an example schematic block diagram for the tokenizerencryption service, in accordance with some embodiments;

FIG. 4 is an example process flow diagram for multi-merchanttokenization, in accordance with some embodiments;

FIGS. 5-7 are example flowcharts for methods for multi-merchanttokenization, in accordance with some embodiments;

FIGS. 8A and 8B are example schematic block diagrams for mechanisms forsecure transactions, in accordance with some embodiments;

FIGS. 9A and 9B are example illustrations for computer systemsconfigured to embody the multi-merchant tokenization system, inaccordance with some embodiments;

FIG. 10 is a System Level Block Diagram of a Distributed EnhancedPayment (DEP) Processing System in accordance with an embodiment of thepresent invention;

FIG. 11 is a Top Level Logic Flow Diagram in accordance with a DEPProcessing System embodiment;

FIG. 12 is an exemplary screen shot of a payer choice payment controlsubscreen in accordance with a DEP Processing System embodiment;

FIG. 13 is an exemplary screen shot of a payer list configurationfacility screen in accordance with a DEP Processing System embodiment;

FIG. 14 is a Logic Flow Diagram that further decomposes Step 1160 ofFIG. 11 so as to describe the processing of VEP in accordance with a DEPProcessing System embodiment;

FIG. 15 is a Logic Flow Diagram that further decomposes Step 1180 ofFIG. 11 so as to describe the processing of VEP in accordance with a DEPProcessing System embodiment;

FIG. 16 is a System Level Block Diagram of an Arbitraged EnhancedPayment (AEP) Processing System in accordance with an embodiment of thepresent invention;

FIG. 17 is a Top Level Logic Flow Diagram in accordance with an AEPProcessing System embodiment;

FIG. 18 is a Logic Flow Diagram that further decomposes Step 1710 ofFIG. 17 so as to describe the retrieval of service control directive(s)that may affect AEP processing of a given payment transaction, includingbut not limited to VEP, in accordance with an AEP Processing Systemembodiment;

FIG. 19 is a Logic Flow Diagram that further decomposes Step 1720 ofFIG. 17 so as to describe the prioritization of processing of paymenttransactions, including but not limited to VEP transactions, inaccordance with an AEP Processing System embodiment;

FIG. 20 is a Logic Flow Diagram that further decomposes Step 1730 ofFIG. 17 so as to describe the selective directing of paymenttransactions for processing of electronic payments, including but notlimited to VEP transactions, in accordance with an AEP Processing Systemembodiment;

FIG. 21 is a System Level Block Diagram of an Expedited AutomatedMerchant Boarding (EAMB) System in accordance with an embodiment of thepresent invention;

FIG. 22 is a Top Level Logic Flow Diagram in accordance with an EAMBSystem embodiment;

FIG. 23 is a Logic Flow Diagram that further decomposes Step 2210 ofFIG. 22 so as to describe pre-boarding a merchant's POS terminal systemcomponents;

FIG. 24 is a Logic Flow Diagram that further decomposes Step 2220 ofFIG. 22 so as to describe establishing a merchant account;

FIG. 25 is a Logic Flow Diagram that further decomposes Step 2440 ofFIG. 24 so as to describe revising merchant selected services;

FIG. 26a is an exemplary screen shot of a merchant account informationscreen;

FIG. 26b is an exemplary screen shot of a merchant account informationscreen;

FIG. 27 is a Logic Flow Diagram that further decomposes Step 2230 ofFIG. 22 so as to describe auto-boarding a merchant's POS terminalsystem;

FIG. 28 is a System Level Block Diagram of a Cost Altering PaymentServices (“CAPS”) System in accordance with an embodiment of the presentinvention;

FIG. 29 is a Top Level Logic Flow Diagram in accordance with an CAPSSystem embodiment;

FIG. 30 is a Logic Flow Diagram that further decomposes Step 2910 ofFIG. 29 so as to describe receiving additional risk mitigating paymenttransaction (“RMPT”) information;

FIG. 31 is a Logic Flow Diagram that further decomposes Step 3010 ofFIG. 30 so as to describe facilitating acquisition of additional RMPTinformation;

FIG. 32 is an exemplary screen shot of a cost profile characterizingtransaction cost components;

FIG. 33 is an exemplary screen shot of a cost profile comparingtransaction costs associated with service sets; and

FIG. 34 is a Logic Flow Diagram that further decomposes Step 2920 ofFIG. 29 so as to describe altering transaction cost.

DETAILED DESCRIPTION

The present invention will now be described in detail with reference toseveral embodiments thereof as illustrated in the accompanying drawings.In the following description, numerous specific details are set forth inorder to provide a thorough understanding of embodiments of the presentinvention. It will be apparent, however, to one skilled in the art, thatembodiments may be practiced without some or all of these specificdetails. In other instances, well known process steps and/or structureshave not been described in detail in order to not unnecessarily obscurethe present invention. The features and advantages of embodiments may bebetter understood with reference to the drawings and discussions thatfollow.

Aspects, features and advantages of exemplary embodiments of the presentinvention will become better understood with regard to the followingdescription in connection with the accompanying drawing(s). It should beapparent to those skilled in the art that the described embodiments ofthe present invention provided herein are illustrative only and notlimiting, having been presented by way of example only. All featuresdisclosed in this description may be replaced by alternative featuresserving the same or similar purpose, unless expressly stated otherwise.Therefore, numerous other embodiments of the modifications thereof arecontemplated as falling within the scope of the present invention asdefined herein and equivalents thereto. Hence, use of absolute and/orsequential terms, such as, for example, “will,” “will not,” “shall,”“shall not,” “must,” “must not,” “first,” “initially,” “next,”“subsequently,” “before,” “after,” “lastly,” and “finally,” are notmeant to limit the scope of the present invention as the embodimentsdisclosed herein are merely exemplary.

The following discussion relates to methods and systems formulti-merchant tokenization in a payment processor. Such systems andmethods increase security for electronic transactions, reduce risksborne by the payment processor, and allow for seamless multi-merchanttransactions without the need to repeatedly collect user account data.

Note that the following disclosure includes a series of subsections.These subsections are not intended to limit the scope of the disclosurein any way, and are merely for the sake of clarity and ease of reading.As such, disclosure in one section may be equally applied to processesor descriptions of another section if and where applicable.

Also note that particular consideration is made to credit cardtransactions due to the prevalence of these transactions. Despite thisreference to credit cards, the disclosed systems and methods can applyequally well to any payment methods where sensitive information is beingtransferred. This may include debit transactions, gift cardtransactions, PayPal transactions, smart card transactions, mobileapplication transactions, and the usage of loyalty cards, to name but afew. Effectively, any circumstance where account numbers, or othersensitive information, is being transferred may be employed within thescope of the disclosed systems and methods.

I. Multi-Merchant Tokenization Systems

To facilitate this discussion, FIGS. 8A and 8B provide example blockdiagrams for methods for securely handling transaction payments, inaccordance with some embodiments. In FIG. 8A, the point of sale terminal102 may collect credit card information (or other sensitive paymentinformation) and transfer the data securely to the payment system(s)106, at 800 a. Intermediary in this transaction is a payment processorwhich ensures validity of the request, and generates a multi-merchanttoken. The payment system(s) 106 returns a transaction response securelywith the token generated by the payment processor to the merchant.

By relying upon a token, the merchant no longer has to send the creditcard information for subsequent transactions and may instead utilize thetoken for follow-up activities. For example, a restaurant may initiallyrun a transaction for the cost of a meal, and perform a follow-uptransaction using the token for processing the tip. Another example mayinclude recurring transactions for a gym membership. A retailer may usetokens for returns or price adjustments rather than resending sensitivetransaction information.

In contrast to current tokenization systems, the presently disclosedsystems and methods transfer a token with a unique makeup (includingencrypted card data) that enables distributed storage of sensitiveinformation, as well as the ability for multiple merchants to share thetoken for transactions. This may be of particular use in franchise orrelated businesses, where a customer's payment information may beprocessed by multiple merchants.

For example, a customer may purchase a good from location A from afranchise retailer. The customer then decides to return the item tolocation B which is within the same franchise, but may not be owned bythe same entity. Instead of denying the transaction, or re-running thecard using the presently disclosed system, the token may be leveraged toperform the transaction.

FIG. 8B illustrates a schematic block diagram illustrating end to end(E2E) encryption, at 800 b. End to end encryption protects sensitiveinformation from malware loaded upon a point of sale terminal, and maybe employed in conjunction with multi-merchant tokenization.

In these systems, the card information is encrypted at the reader head,upon collection. Thus, the information conveyed from the reader to therest of the POS system is already secure. Since the POS system may beinfected by malware, this early encryption ensures that the data remainssecure from the very start. While the currently disclosed systems andmethods can be employed with end to end encryption, this is not arequired feature to employ the tokenization disclosed herein.

The secure data is then transmitted to the payment system(s) 106, andthe response may be returned in an encrypted format. Since the data isnever in the clear, E2E payment methods ensures added security frompotential vulnerability at the point of sale terminal 102. Further, whenutilized in conjunction with multi-merchant tokens, the system'ssecurity is even more robust.

Turning to FIG. 1, an example schematic block diagram for a system formulti-merchant tokenization is provided, shown generally at 100. In thisexample block diagram, a purchaser 101 may be seen interacting with thepoint of sale terminal 102 in order to pay for a purchase, or otherwisesettle a transaction. Typically the purchaser 101 provides amagnetically stored account number and expiration in the form of acredit card, but as previously discussed any form of sensitive paymentinformation may be utilized, in some embodiments.

The point of sale 102 may include a fixed reader coupled to a terminal,an integrated cash register system, mobile payment application, or thelike. As noted above, the point of sale terminal 102 may encrypt thecollected data at the reader head in order to ensure security.Alternatively the initial encryption may be performed in software deeperin the point of sale terminal 102, in some embodiments. Softwareencryption, however, increases vulnerability to security breach if thepoint of sale terminal 102 has been compromised. Regardless of locationof initial encryption, an encryption protocol may be employed, in someembodiments. This encryption protocol typically includes a merchant ID,amount for the transaction, passwords and an encrypted portion. Theencrypted portion may be in the following format, in some embodiments:

<encryption> <block> <key> <serial number> </encryption>

Note that while a specific encryption protocol is presented here,alternate known encryption schemas may be readily employed in alternateembodiments.

The point of sale terminal 102 may be capable of providing the collectedaccount information (and other sensitive information) to a paymentservice(s) 104 in the tokenization and payment management system 120(payment processor). This transfer of data may be performed over theinternet or via a dial in connection. The payment service(s) 104 mayinclude a plurality of systems for receiving the data, dependent upontransmission mechanism and data type, as will be discussed in greaterdetail below. The payment service(s) 104 does an initial check forencryption of the data. If the received data is not encrypted, it may betransferred immediately to payment system(s) 106 for transfer of funds,or directly to entities such as Visa, MasterCard, etc. Payment system(s)106 may include entities such as Global Card Bank, for example. However,where encryption is present, and tokenization is desired, the paymentservice(s) 104 may transfer the information to a tokenizer encryptionservice 110 for processing. The payment service(s) 104 validates theencrypted block, encrypted key and reader serial number lengths. It alsovalidates the merchant's ID with a stored database of terminal IDs.

The tokenizer encryption service 110 validates credentials andidentifies keys for the encrypted data. The tokenizer encryption service110 may leverage a data tier 114 populated by analytics 116 system andCRM application(s) in order to perform validation and identification ofkeys. The data is then submitted to a hardware security module 108 fordecryption and the generation of a token. The token includes a primaryaccount number (PAN), a group ID (GID), an expiration date for thetoken, and an expiration date for the card.

In some embodiments, the expiration date of the token may be varieddepending upon if the token is designated as a single use token, or forrecurring transactions (i.e., a subscription). For example, a 1 year and2 year expiration may be provided for a single use and recurring token,respectively. This allows for a longer validity period where themerchant is anticipating reuse of the token, and ensures that tokens arenot stored unnecessarily long for single use tokens.

The token, which is encrypted, and clear text of the data supplied bythe point of sale terminal 102 are returned to the tokenizer encryptionservice 110, and subsequently to the payment service(s) 104. The paymentservice(s) 104 transfers the clear text to the payment system(s) 106 fora transaction response. The response is then provided, along with thetoken, back to the merchant. The merchant may then store the encryptedtoken in a local database for later transactions.

Unlike current tokenization technology, the PAN (primary account number)is stored as part of the token, with the merchant, in encrypted form.The merchant cannot access the PAN without the keys maintained withinthe hardware security module 108. Thus, for account information to becompromised, both the merchant system and the tokenization and paymentmanagement system 120 would need to be breached. In all other knowntoken based systems, the PAN is stored exclusively upon the paymentprocessor's system, enabling a hacker to collect account information bybreaching a single system.

Additionally, unlike other token based systems, the present systemincludes a GID (group ID) which enables more than one merchant toutilize the token. The data tier 114 maintains a copy of merchant IDsand correlates them with one or more GIDs. When a token is supplied tothe system during a later transaction, the GID in the token is comparedagainst the merchant ID listed in the data tier 114. If they match, thenthe tokenization and payment management system 120 may process thetoken.

FIG. 2 is an example schematic block diagram for a more detailed view ofcomponents within the tokenization and payment management system, inaccordance with some embodiments. In this example block diagram,encrypted data 202 from the point of sale terminal 102 is seen beingdelivered to the payment service(s) 104 via any of a dial accessconnector 204, internet socket 206 or web services 208. When data isdelivered to the dial access connector 204, it may pass through a dialaccess concentrator 210 prior to being provided to a server 214. If datapasses through the internet socket 206 or web services 208, it may besupplied to the server 214.

In addition to the server 214, other servers may be included, inalternate embodiments, in order to handle alternate inputs. For example,in embodiments where gift cards or loyalty cards are being processed,the system may include a gift card server or loyalty card server.Generally, the system is designed to be scalable to take any number ofpayment types, as is desirable for any particular scenario.

The server 214 determines if token is present and/or if data isencrypted. If not encrypted and the merchant is not setup fortokenization, the clear text data is transferred to the paymentsystem(s) 106 (such as Global Card Bank, Visa, etc.) for approval ordeclining. Otherwise, if the data includes a token or encrypted data, itmay be provided to the tokenizer encryption service 110, as previouslydiscussed.

FIG. 3 is an example schematic block diagram for the tokenizerencryption service 110, in accordance with some embodiments. Thiscomponent may include two distinct modules: an incoming switch gatelogic module 302 and an encryption service business logic 304. Theincoming switch gate logic module 302 may validate credentials of themerchant, and the encryption service business logic 304 may identifykeys for the data. The encryption service business logic 304 may accessthe data tier 114 and one or more hardware security module 108 a and 108b. More than one hardware security module 108 a and 108 b may beemployed for redundancy supporting failover and load balance.

Lastly, FIG. 4 is an example process flow diagram for multi-merchanttokenization system, in accordance with some embodiments. Here it isseen that a purchaser 101 makes an electronic payment 402 via a point ofsale terminal 102. The transaction request built by the point of saleterminal 102 includes an indication requesting tokenization, in thisexample.

The transaction is submitted to the tokenization and payment managementsystem 120, in this example, where the transaction data is checked forthe token indicator (at 404). The merchant ID included in thetransaction data is also compared against records to determine if themerchant is configured for tokenization. If the token indicator ispresent, and the merchant ID matches the ability to performtokenization, then the transaction is set to be routed throughtokenization logic, and is sent to the payment system(s) 106 forauthorization (at 406).

If the merchant ID does not match the token indicator in thetransaction, then a decline is sent back to the merchant (at 408). Thisis a sanity check that ensures that both the transaction and merchantconfiguration are in alignment prior to approving a transaction. Oncethe transaction is declined, the merchant may contact the tokenizationand payment management system 120 to confirm correct setup if theybelieve the decline was in error.

If the transaction is approved by the payment system(s) 106, then thetransaction may be sent through the tokenization logic (at 414). Inalternate embodiments, the transaction is sent through the tokenizationlogic prior to approval by the payment system(s) 106, and the token isattached to the response by the payment system(s) 106 regardless ofapproval status. As noted above, the token contemplated herein includesthe primary account number, token expiration, card (or account number)expiration, and a group ID.

Once the token is assembled, it is inserted into a token field in thetransaction response (at 416). The response is provided to the merchantwhere the approval is received, and the merchant retains the tokeninstead of the primary account number.

II. Multi-Merchant Tokenization Methods

Now that embodiments of the basic system architecture have beendescribed, FIG. 5 is presented to illustrate one embodiment of a methodfor multi-merchant tokenization, shown generally at 500. In this exampleprocess, the point of sale sends a request with the cardholder's data tothe server (at 502). The server may determine if the request includes arecurring frequency element (at 504). If the request is for a recurringtoken, logic for a recurring billing token may be utilized (at 508).Alternatively, if the request is for a normal single use token, logicfor this token may be utilized (at 506). Generally, recurring tokens maydiffer from normal tokens by having a longer period before they expire.

Next, the token request is compared against the merchant's setup (asstored in a database) to make sure that the token request is inalignment to the merchant's configuration (at 510). If the merchant doesnot match the token request, the transaction may be declined (at 512).Otherwise, if there is a match between the request and the merchant'sconfiguration, the system determines if a token is being requested (at514). If no token is requested, the entire tokenization logic may bebypassed and the system may forward the transaction to the paymentsystem(s) 106 without tokenization (at 520). In alternate embodiments,all transactions will be processed for a token regardless if a requestfor tokenization is present. In these embodiments, merchants that areconfigured to accept tokens will receive them if they have submitted acorrectly formatted transaction request. In these embodiments, only ifthe request is incorrectly formatted will the tokenization process bebypassed or declined.

However, if tokenization is requested, the server may request a token(at 516) from the hardware security module 108 based upon the frequencyelement (normal or recurring). If the transaction is approved by thecard brand (at 518), then the approval is returned to the merchant (at524), or is otherwise declined (at 522). In some embodiments, regardlessof transaction approval or decline, the token will be provided to themerchant along with the transaction response.

In an alternate method, as shown at 600 of FIG. 6, the point of saleterminal 102 sends a request to the tokenization and payment managementsystem 120 with a token (at 602). The server detects the presence of thetoken, as well the frequency element of the token (at 604). The systemnext determines if the merchant is set up for tokenization by queryingmerchant account information (at 606). If the merchant is not set up fortokenization, the request will be denied (at 610). However, if themerchant is set up for tokenization, then the system may inquire if thefrequency element is for a recurring token (at 608).

When a recurring frequency element is present, the server may modifybilling mode for recurring billing transactions (at 612). After this, orif no recurring element is present, the tokenizer encryption service 110requests decryption of the token from the hardware security module 108to retrieve account numbers, expiration dates, group ID, and optionallythe generation of an updated token (at 614). In some embodiments, everytransaction may include updates of the token. This ensures tokens neverbecome stale; however, alternate embodiments may keep existing tokens,or only update upon request, in some cases.

The decrypted token information is used to get approval from the paymentsystem(s) 106 (at 616). An approval response (at 618) or decliningresponse (at 610) may be provided back to the point of sale terminal102. In cases where the token has been updated, the new token mayaccompany the response regardless of if it was approved. This new tokenmay then be stored within the merchant's system for later use.

As previously noted, due to the presence of a group ID within the token,the system may also undergo a check to determine if the merchant islinked to the group ID. If so, the merchant is authorized to use thetoken. If not, the transaction may be declined.

FIG. 7 provides yet another flow diagram for an embodiment formulti-merchant tokenization of transactions, shown generally at 700. Inthis example process, the point of sale sends an end to end request tothe server (at 702). The server detects the end to end transaction (at704) and ensures that the merchant is configured for such transactionsby referencing merchant account data (at 706). If the merchant is notconfigured for end to end transactions, then the transaction is declined(at 708). However, if the merchant is set up for end to endtransactions, the process then determines if the initial request isencrypted (at 710). Subsequently, the system determines if the merchantis configured for tokenization (at 712).

If the request was not encrypted, or if the merchant is not set up fortokenization, then the transaction is declined (at 708). However, if themerchant is configured for tokenization and the request was encrypted,the server modifies the billing mode (at 714) for recurring transactions(if the transaction is a recurring event), and the data is decrypted (at716). The decrypted data is supplied to a payment system(s) 106 forapproval (at 718) and if approved, the data may be returned to themerchant (at 720). Otherwise the transaction may be declined (at 708).

III. System Embodiments

FIGS. 9A and 9B illustrate a Computer System 900, which is suitable forimplementing embodiments of the present invention. FIG. 9A shows onepossible physical form of the Computer System 900. Of course, theComputer System 900 may have many physical forms ranging from a printedcircuit board, an integrated circuit, and a small handheld device up toa huge super computer. Computer system 900 may include a Monitor 902, aDisplay 904, a Housing 906, a Disk Drive 908, a Keyboard 910, and aMouse 912. Disk 914 is a computer-readable medium used to transfer datato and from Computer System 900.

In addition to the standard desktop, or server, computer systemillustrated, it is fully within the scope of this disclosure that anycomputer system capable of the required storage and processing demandswould be suitable for embodying the present invention. This may includetablet devices, smart phones, pin pad devices, and any other computerdevices, whether mobile or even distributed on a network (i.e., cloudbased).

FIG. 9B is an example of a block diagram for Computer System 900.Attached to System Bus 920 are a wide variety of subsystems.Processor(s) 922 (also referred to as central processing units, or CPUs)are coupled to storage devices, including Memory 924. Memory 924includes random access memory (RAM) and read-only memory (ROM). As iswell known in the art, ROM acts to transfer data and instructionsuni-directionally to the CPU and RAM is used typically to transfer dataand instructions in a bi-directional manner. Both of these types ofmemories may include any suitable of the computer-readable mediadescribed below. A Fixed Disk 926 may also be coupled bi-directionallyto the Processor 922; it provides additional data storage capacity andmay also include any of the computer-readable media described below.Fixed Disk 926 may be used to store programs, data, and the like and istypically a secondary storage medium (such as a hard disk) that isslower than primary storage. It will be appreciated that the informationretained within Fixed Disk 926 may, in appropriate cases, beincorporated in standard fashion as virtual memory in Memory 924.Removable Disk 914 may take the form of any of the computer-readablemedia described below.

Processor 922 is also coupled to a variety of input/output devices, suchas Display 904, Keyboard 910, Mouse 912 and Speakers 930. In general, aninput/output device may be any of: video displays, track balls, mice,keyboards, microphones, touch-sensitive displays, transducer cardreaders, magnetic or paper tape readers, tablets, styluses, voice orhandwriting recognizers, biometrics readers, or other computers.Processor 922 optionally may be coupled to another computer ortelecommunications network using Network Interface 940. With such aNetwork Interface 940, it is contemplated that the Processor 922 mightreceive information from the network, or might output information to thenetwork in the course of performing the above-described multi-merchanttokenization. Furthermore, method embodiments of the present inventionmay execute solely upon Processor 922 or may execute over a network suchas the Internet in conjunction with a remote CPU that shares a portionof the processing.

In addition, embodiments of the present invention further relate tocomputer storage products with a computer-readable medium that havecomputer code thereon for performing various computer-implementedoperations. The media and computer code may be those specially designedand constructed for the purposes of the present invention, or they maybe of the kind well known and available to those having skill in thecomputer software arts. Examples of computer-readable media include, butare not limited to: magnetic media such as hard disks, floppy disks, andmagnetic tape; optical media such as CD-ROMs and holographic devices;magneto-optical media such as floptical disks; and hardware devices thatare specially configured to store and execute program code, such asapplication-specific integrated circuits (ASICs), programmable logicdevices (PLDs) and ROM and RAM devices. Examples of computer codeinclude machine code, such as produced by a compiler, and filescontaining higher level code that are executed by a computer using aninterpreter.

IV. Enhancements—Distributed Enhanced Payment

The Distributed Enhanced Payment (DEP) Processing System—is directed tonovel methods and systems for acquiring, translating, communicating,securing, storing, retrieving, aggregating and post-processingelectronic payment information (EPI) pertaining to a given individualpurchaser via a given merchant's POS terminal system; utilizing secure,distributed and re-usable multi-merchant tokenization (as describedpreviously herein) to store and/or retrieve some or all of said EPI;and/or securely communicating some or all of said EPI utilizing cleartext and/or tokenization included in a given payer authorization requestcommunicated to a payer chosen by a given purchaser—with such a requesttransacted in such a way that creditworthiness may be verified and/orfunds transferred between said purchaser's funding account and acorresponding transacting merchant's account in the amount of a“requested payment” as may be indicated by the EPI. In someauthorization requests, the requested payment may be for a purchase andthus result in the debiting of funds from the purchaser's fundingaccount and crediting to the transacting merchant's account. In someauthorization requests, the requested payment may be for a full orpartial refund and thus result in the debiting of funds from thetransacting merchant's account and crediting to the purchaser's fundingaccount. For a given authorization request, the amount of the requestedpayment may be utilized to check for the availability of credit and/orfunds for an anticipated but not yet realized purchase—i.e., apre-authorization—and result in zero change to the fund level in thepurchaser's funding account due to that pre-authorization. In someauthorization requests, such as for a check-in transaction, therequested payment may be left unvalued or may have a value that may beignored.

In some embodiments, purchase payment, refund and pre-authorizationauthorization requests may be utilized for VEP entities as well as forTCB payers. However, processing VEP may utilize a check-in transactionto identify and authenticate a given purchaser and said purchaser with abroader range of services than TCB payer services may provide.Competition with VEP entities may cause TCB payers to also support acheck-in transaction; or to acquire or be acquired by or merge with aVEP entity that does. Therefore, despite references to VEP and VEPentities, the systems and methods disclosed herein may apply equallywell to any payment methods where sensitive information may betransferred. This may include debit transactions, credit cardtransactions, gift card transactions, PayPal transactions, smart cardtransactions, mobile application transactions, and the usage of loyaltycards, to name but a few.

In some embodiments, electronic payment information—EPI—required by aVEP entity and/or TCB payer may include but not be limited to: purchaserpayment credential(s), transaction description, and payment requestinformation. More specifically, EPI may include but not be limited to:purchaser's primary account identifying information and/or purchaserauthenticating information; authorization request type (e.g., check-in,pre-authorization, purchase payment, refund); transacting merchant'saccount identifying information and/or credential(s); POS identifyinginformation such as location and terminal number; transactionidentifying information such as date, time, SKU, quantity and price; andpayment request information such as requested payment amount,transacting merchant's account identifying information, as well asidentifying information and/or credential(s) corresponding to paymentmanagement system 120 requesting payment as the merchant's intermediary.

In some embodiments, EPI may include TCB payer or VEP entity identifyinginformation that may be utilized for associating a given authorizationrequest to the appropriate payment entity such as a VEP entity or TCBpayer.

In some embodiments, if the primary account identified in the EPI may bea VEP primary account from a VEP entity such as PayPal, Dwolla, orGoogle Wallet, the VEP primary account may reference in turn a differentpre-associated purchaser funding account, for example a MasterCardaccount or a bank checking account, from which the requested payment mayactually be debited (or credited). Some VEP entity's services may bereferred to colloquially as an ‘electronic wallet’ or ‘e-wallet’ orsimilar term evoking the notional image of a virtual payment containingand/or dispensing entity.

In some embodiments, purchaser payment credential(s) required by a VEPentity and/or TCB payer may include but not be limited to: primaryaccount number (PAN), personal identification number (PIN), paymentcard/credential(s) expiration date, purchaser's name, purchaser'sbilling postal code. Some VEP entities may utilize a unique purchaseridentifier that may operate as a substitute for the actual PAN, i.e., aunique purchaser alias. For example, a given purchaser utilizing a givenVEP entity may type in said purchaser's ten digit phone number and alsoa corresponding multi-digit ‘secret’ PIN. The VEP entity may use suchpurchaser authenticating information to lookup the corresponding PAN;and from that PAN determine the corresponding purchaser funding account.Depending on the VEP entity, one or more unique purchaser identifier(s)may be utilized as a substitute for the actual PAN, including but notlimited to a telephone number, an email address, a social network‘handle’, a postal address, a VEP approved user name, or a third partyissued account or identification number. The VEP entity may leverage thediligence of a third party, e.g., Gmail, to assure that the substitutedpurchaser identifier is unique to the purchaser within the identifierspace of that third party. Many VEP entities may require purchaserauthenticating information including a PIN or password in addition tothe purchaser identifier, and may require unique identifier andPIN/password pairings. It should be noted that a purchaser potentiallymay use the same substitute purchaser identifier and/or PIN/password formore than one VEP entity. For example, a given purchaser may use thesame pairing of phone number: 650-567-9153 and PIN: 5653 for both PayPaland Dwolla and yet be uniquely identified and authenticated for theseparate purposes of each of those VEP entities. Therefore, unlike thePAN of a TCB payer account, a purchaser's payment credential(s) may notinherently identify a unique corresponding VEP entity. Also in contrast,TCB payer services operate by identifying the funding account ratherthan the purchaser, i.e., an essential component of purchaser paymentcredential(s) for TCB payers is the primary account number (PAN), whichfor credit cards typically may be the same as the funding accountnumber, whereas for debit cards, the PAN typically may be utilized bythe TCB payer to lookup the separate funding account number.

To facilitate discussion, FIG. 10 shows an exemplary structural blockdiagram of a Virtual Electronic Payment processing system 1000, which insome embodiments may be utilized by a given purchaser 101 to conductelectronic payment related transactions. Tender 1015 may be physicallyexchanged or may be presented in a virtual form for electronic exchangeon said purchaser's behalf by third parties such as VEP entity system(s)105 and/or payment system(s) 106. Purchaser 101 may directly utilize aPOS terminal system 102; and/or another party or parties (notshown)—performing on the purchaser's behalf and/or on the transactingmerchant's behalf (e.g., a checking clerk)—may utilize said POS terminalsystem 102 to assist said purchaser 101. To avoid reiterating the abovein the description that follows, references to a purchaser 101 utilizinga given POS terminal system 102 may apply equally to party(s) utilizingsaid POS terminal system 102 on the purchaser's behalf as indicatedabove.

A DEP Processing System 1000 may in some embodiments utilize adistributed system facility—a Payment Client 1025 a—integrated with aPOS terminal system 102 and operating on a POS processor 1025 andutilizing a Payment Depository 1028 to cache and/or recordinformation—including multi-merchant tokenized EPI as describedpreviously—related to transaction payment and/or related to otherauthorization requests. Furthermore, Payment Client 1025 a may in someembodiments operate POS input device(s) 1022 and POS display device(s)1024 in coordination with—but independent of—third party POS systemsoftware (not shown) running on POS processor 1025 such that said thirdparty sourced POS system software may be isolated from informationtransmitted to POS display device(s) 1024 or received from POS inputdevice(s) 1022 by Payment Client 1025 a. In this way, Payment Client1025 a may interact with a given purchaser 101 to securely process saidpurchaser's electronic payment and/or payment related transaction insuch a way that Payment Client 1025 a's functioning may appear topurchaser 101 to be part of a single fully integrated POS terminalsystem 102.

A DEP Processing System 1000 further may in some embodiments include apayment management system 120 accessed from a given POS terminal system102 via a communication facility 1081. As previously detailed, such apayment management system 120 may serve as a secure informationrepository and tokenizer. Additionally, payment management system 120may operate as an electronic payment transaction normalizing andaggregating intermediary between POS terminal system 102 and VEP entitysystem(s) 105 accessed via a communication facility 1085. Paymentmanagement system 120 may provide facilities including but not limitedto storage, retrieval, validation and tracking of: tokens, decryptionkeys, and correlations between merchant IDs and group IDs.

As well as supporting processing of VEP authorization requests, in someembodiments DEP Processing System 1000 may also support processing ofTCB payer authorization requests wherein payment management system 120may utilize a communication facility 1087 to communicate with paymentsystem(s) 106.

In some embodiment(s), VEP entity system(s) 105, may utilizecommunication facility 1086 to communicate with payment system(s) 106.For example, PayPal may debit a given purchase payment from apurchaser's MasterCard credit card funding account.

In some embodiments, some or all of communication facilities 1081, 1085,1086, and 1087 may utilize common underlying facilities. For example,one or several of said communication facilities may utilize theInternet, while other of said communication facilities may utilize acommon private network.

Referring further to FIG. 10, in some embodiments, Payment Client 1025 aand third party sourced POS system software may each be described as a“control entity”. In some embodiments, both control entities mayconcurrently display information on POS display device(s) 1024 thuscreating a “blended display”. The portion(s) of the blended display thatmay be sourced from Payment Client 1025 a may be referred to as “paymentcontrol subscreen(s)”. In some embodiments, a payment controlsubscreen(s) may occupy a portion of or the entire display of a givenPOS display device(s) 1024 and may over-write whatever was previouslydisplayed in the affected area of said POS display device(s) 1024. Theoperation of the payment control subscreen(s) may be coordinated betweenPayment Client 1025 a and POS system software so as not to unwittinglyoverwrite each other's display information. In some embodiments, to makesuch coordination easier to implement, a ‘toggling’ regime may beutilized whereby one or the other control entity operates POS input anddisplay device(s)—1022 and 1024 respectively—while the other controlentity may be in a ‘dormant’ state awaiting control to be toggled backto it. In some embodiments, as previously described, POS input device(s)1022 may be configured to encrypt input information—including but notlimited to purchaser payment credential(s) input at the reader head—suchthat POS system software as well as any potential malware on a POSterminal system 102 may be incapable of directly accessing such securedinput information.

In some embodiments, Payment Client 1025 a may concurrently operate morethan one separate POS input device(s) 1022 and/or POS display device(s)1024 to process a given purchaser 101's transaction. For example, thechecking clerk's POS display device(s) 1024 may be different than agiven purchaser's and may display more or different information. PaymentClient 1025 a may thus concurrently support different versions ofpayment control subscreens for the checking clerk and purchaser 101respectively. For example, the checking clerk's display screen mayinclude a photograph to help visually verify the identity of a givenpurchaser 101.

In some embodiments, a single device may provide facilities of both POSinput device(s) 1022 as well as POS display device(s) 1024—for example a‘pen-pad’.

In some embodiments, Payment Client 1025 a may exclusively operate POSinput device(s) 1022 and/or POS display device(s) 1024. For example,more primitive devices such as legacy pen-pads may be difficult orundesirable to operate using shared control with POS system software. Insome embodiments, Payment Client 1025 a may act in part as a proxy or asa virtual device providing an indirect means for POS system software todisplay information on POS display device(s) 1024 and read informationfrom POS input device(s) 1022. Such ‘virtualization’ of POS inputdevice(s) 1022 and/or POS display device(s) 1024 may make it easier fora POS system vendor to upgrade a merchant's POS terminal system withdifferent POS input device(s) 1022 and/or POS display device(s) 1024.

In some embodiments, Payment Client 1025 a may conduct some or all ofthe processing of the purchaser payment credential(s) in coordinationwith, but independent of POS system software. The degree to whichPayment Client 1025 a may share processing of the purchaser paymentcredential(s) with POS system software may be determined by apre-configured profile—a “persona”—that may be pre-configured by theappropriate third party POS system vendor and/or POS system softwaredeveloper(s) supporting a given POS terminal system 102. Depending onsaid pre-configuration of the persona, Payment Client 1025 a may byvarying degree share purchaser payment credential(s) with or isolatepurchaser payment credential(s) from POS system software—effectivelyproviding varying levels of Payment Client 1025 a autonomous operationand purchaser payment credential(s) security. Additionally, said personamay be pre-configured to establish the degree of coordination of controlof POS processor 1025, POS input device(s) 1022, and POS displaydevice(s) 1024 between Payment Client 1025 a and POS system software.The levels of security provided by various Payment Client 1025 apersonas may be devised so as to be compliant with third party securityaudit requirements including from organizations such as PCI (not shown)as well as operators of VEP entity system(s) 105 and/or paymentsystem(s) 106.

In some embodiments, POS terminal system 102 may obtain some or all ofthe EPI from the purchaser 101 utilizing POS display device(s) 1024and/or POS input device(s) 1022 and/or from previously storedtransaction information and/or other records. For example, such EPI maybe stored at POS terminal system 102 within a multi-merchant token, asdescribed previously. POS system software may provide said EPI toPayment Client 1025 a such that Payment Client 1025 a may acquire EPIfor a given purchaser 101 and communicate such EPI to payment managementsystem 120 via a communication facility 1081.

In some embodiments, DEP Processing System 1000 utilizing paymentmanagement system 120 may record the details of a payment transactionincluding but not be limited to; EPI, a transaction outcome indication,i.e., ‘approved’ or ‘declined’, and an “authorization code” (if any). Insome embodiments, some or all of such recorded details, or an identifierfor such recorded details, may be included in a multi-merchant token.Such a multi-merchant token may be communicated to POS terminal system102, where it may be stored as described previously. In someembodiments, to protect a given purchaser 101's privacy, portions of agiven transaction record included in a token may be redacted and/orencrypted.

In some embodiments, the EPI may be encrypted in part or in full at thereader head, or otherwise within a given POS input device(s) 1022, or byPOS system software prior to access to the EPI by Payment Client 1025 a.Furthermore, in some embodiments, portions or all of encrypted EPI maynot be decrypted by payment management system 120, but rathercommunicated in raw encrypted and/or multi-merchant tokenized form aspart of a given authorization request communicated to a given VEP entitysystem(s) 105 or given payment system(s) 106. In some embodiments, someor all of a given multi-merchant token may be exchanged with a given VEPentity system(s) 105 or given payment system(s) 106 and may be used insubsequent authorization requests such as for a refund transaction.

Given the rapid rate of advancement and cost reduction relative todisplay technology, some POS terminal systems 102 may utilize relativelyprimitive low-pixel count monochromatic POS display device(s) 1024 whileother POS terminal systems 102 may utilize high-pixel density color POSdisplay device(s) 1024 with display screens similar to those utilized inhundreds of millions of smart phones and tablet computers. Some POSinput device(s) 1022 may utilize relatively crude pressure or proximitysensing technology while other POS input device(s) may utilize‘intelligent’ touch sensors that automatically translate complex sets ofpurchaser movements into one or a series of ‘gesture command’ code(s).In some embodiments, a given purchaser 101 may utilize the purchaser'sown personal communication device, such as a smart phone or tabletcomputer, as POS input and/or display device(s)—1022 and 1024respectively. Such an increasingly broad range of innovative POSperipheral device technology potentially inter-mixed with relativelyprimitive legacy devices may place unwelcome development, support andsecurity audit burdens on numerous third party developers of POS systemsoftware. Payment Client 1025 a may decrease such burdens by assumingsome or all of the direct control of such POS input and/or displaydevice(s), including those devices dedicated specifically to paymentprocessing such as ‘pen pads’.

In some embodiments, “purchase item(s)” (not shown), i.e., good(s)and/or services(s), may be selected and paid for by a given purchaser101. The purchase item(s) selected by a given purchaser 101 may bescanned utilizing POS terminal system 102 to create a “ticket” (notshown) listing the purchase item(s) and the amount of payment requestedto compensate the transacting merchant in exchange for said purchaseitem(s).

In some embodiments, the purchaser 101 may combine several forms ofpayment to compensate the transacting merchant for the purchase item(s).For example, purchaser 101 may combine coupon(s), store creditvoucher(s) and perhaps some cash along with virtual electronic payment.In some embodiments, payment may be made via more than one of: VEPentity system(s) 105 and/or payment system(s) 106. For example, arestaurant bill payment may be split between a Google Wallet account anda Visa credit card account.

In some embodiments, Payment Client 1025 a may be utilized to facilitatepre-authorization of a contemplated purchase. In some embodiments, sucha pre-authorization transaction request may include a requested paymentamount, which may approximate the payment amount of an anticipatedpurchase, and that may be utilized to verify that a correspondingpurchase payment transaction request with a similar requested paymentamount may likely be approved. For example, a restaurant owning merchantmay pre-authorize the estimated cost of drinks and dinner before runninga tab for a given party of diners.

In some embodiments, a purchaser 101 may ‘check in’ with a chosen VEPentity by utilizing Payment Client 1025 a to select said chosen VEPentity and communicate purchaser payment credential(s) via paymentmanagement system 120 to VEP entity system(s) 105 of said chosen VEPentity. VEP entity system(s) 105 may utilize the said purchaser paymentcredential(s) to authenticate purchaser 101 and subsequently communicateto payment management system 120 a transaction response approving ordeclining the check-in authorization request. The “transaction outcome”(i.e., approved or declined) communicated in said transaction responsemay be communicated by payment management system 120 to Payment Client1025 a where said transaction outcome may be displayed to purchaser 101via POS display device(s) 1024.

In some embodiments, the transaction response communicated from a VEPentity system(s) 105 may include a “payment entity specified” (PES)token, which may include encrypted transaction related information forwhich the decryption key is held exclusively by said VEP entitysystem(s). Similar to a multi-merchant token exchanged between a POSterminal system 102 and the payment management system 120, a PES tokenmay be utilized in subsequent related transaction request(s) andtransaction response(s)—such as for a refund transaction—wherein the PEStoken is exchanged between payment management system 120 and VEP entitysystem(s) 105 in place of corresponding clear text transactioninformation. In some embodiments, the transaction information includedin a multi-merchant token may be the same or different from thetransaction information included in a PES token. In some embodiments, amulti-merchant token may include some or all of a corresponding PEStoken.

In some embodiments, a purchaser 101 may present previously purchaseditem(s) to the merchant for a refund or for a payment adjustment. Saidpurchaser 101 may also provide a receipt from the original transactionor provide detail(s) of the original transaction—such as SKU,transaction date, chosen payer and/or purchaser payment credential(s).Said merchant may use one or more of such details to retrieve a recordof the original transaction via POS terminal system 102. For example, atransaction identifier taken from such a receipt may be utilized byPayment Client 1025 a in order to retrieve a correspondingmulti-merchant token that may have been stored by POS terminal system102—as previously described—as part of the original transaction. PaymentClient 1025 a may communicate said multi-merchant token—included in arefund transaction request—to payment management system 120. Paymentmanagement system 120 may decrypt said multi-merchant token to extractEPI corresponding to the original transaction and/or to extract atransaction identifier corresponding to a stored transaction record fromwhich EPI may be retrieved. EPI extracted thusly from a multi-merchanttoken or retrieved from a stored transaction record may be utilized bypayment management system 120 to prepare an authorization request.

In some embodiments, Payment Client 1025 a attempting to process arefund transaction may be unable to directly retrieve a record of theoriginal purchase transaction from POS terminal system 102—perhapsbecause the original purchase was made at a different location.Consequently, Payment Client 1025 a may communicate a refundtransaction—including details of the original transaction supplied bypurchaser 101 and/or a receipt—to payment management system 120. Paymentmanagement system 120 may utilize said details of the originaltransaction to search for a corresponding stored transaction record,which may be utilized to prepare an authorization request. In someembodiments, if unable to directly retrieve such a transaction record,payment management system 120 may query VEP entity system(s) 105 and/orpayment system(s) 106 to retrieve a record of the original transaction.Such a retrieved record may contain only a portion of the EPI containedin the corresponding original authorization request. Also such aretrieved record of the original transaction may include encryptedinformation. In some embodiments, payment management system 120 mayutilize information from such a retrieved record to prepare anauthorization request. In some embodiments, payment management system120 may utilize information from such a retrieved record to search for acorresponding transaction record stored previously by payment managementsystem 120, which may be utilized by payment management system 120 toprepare an authorization request.

In some embodiments, Payment Client 1025 a may facilitate utilization ofa display device(s) 1024 to search for and view transaction recordsstored by payment system 120 so as to manually locate a transactionrecord(s) of an original transaction(s) corresponding to an intendedrefund transaction. EPI from such a transaction record(s), once located,may be utilized by payment management system 120 to prepare anauthorization request for a refund transaction.

In some embodiments of DEP Processing System 1000, payment managementsystem 120 may support interfaces to various VEP entity system(s) 105wherein said VEP entity system(s) may utilize interface schemes that mayvary from VEP entity to VEP entity. POS terminal system 102.

Referring to FIG. 11, in some embodiments, a given purchaser 101 mayutilize Payment Client 1025 a, via a given POS terminal system 102, toperform payment related transactions such as: check-in,pre-authorization, purchase payment, and refund. The ordering of stepsin the processing of a payment related transaction may have numerousembodiments; therefore, FIG. 11 represents an exemplary embodiment.

Referring further to FIG. 11, at step 1110, POS terminal system 102 maydetermine the transaction type based on input from purchaser 101utilizing POS input device(s) 1022.

At step 1120, in some embodiments POS terminal system 102 may utilizePOS display device(s) 1024 to offer a given purchaser 101 a selection ofone or more tender option(s) from a set of such tender option(s)supported by POS terminal system 102. POS terminal system 102 may usePOS input Device(s) 1022 to determine a given purchaser's selection oftender option(s). Tender option(s) may include but not be limited to:cash, bank check, store credit, credit card, debit card, and/or VEP. Inthe example of a refund—the tender type may be determined automaticallybased on the tender utilized in the corresponding original transactionpayment.

At step 1130, in some embodiments, a given purchaser 101 may selectand/or cause to be automatically selected an electronic payment tenderoption that requires authorization from VEP entity system(s) 105 and/orpayment system(s) 106 remote from POS terminal system 102.Alternatively, that purchaser 101 may opt for one or more forms oftender that do not require such remote authorization—say cash and/orstore credit voucher(s) and/or coupon(s)—in which case POS terminalsystem 102 may process the payment locally and the electronic paymentprocessing services accessed utilizing Payment Client 1025 a and/orpayment management system 120 may not be required for that processing.

Referring to step 1140, in some embodiments, Payment Client 1025 a mayutilize POS display device(s) 1024 and POS input device(s) 1022 toprovide a given purchaser 101 a selection of payer(s) and determine saidpurchaser's choice of payer. In the descriptions that follow, whicheverof VEP entity system(s) 105 or payment system(s) 106 that may beselected for a given authorization request—such choice may be referredto collectively as “chosen payer system(s)” in order to avoid therepeated recitation of the payer choice options cited above.

FIG. 12 provides an exemplary illustration of a payment controlsubscreen 1200 offering a list of payers from which a given purchaser101 may choose. In that example, some of the payers include TCB payers:American Express 1250, MasterCard 1260, Visa 1270 and Discover 1280; andinclude some VEP entities: PayPal 1220, Google Wallet 1230, and Dwolla1240. Purchaser 101 may decide not to choose any of the payers offeredby Payment Client 1025 a and may choose instead to exit payment controlsubscreen 1200 without choosing a payer. An ‘exit’ selection 1290 may belabeled in numerous ways such as ‘cancel’, ‘exit’, ‘back’ or otherwording or symbology that may indicate to purchaser 101 that paymentcontrol subscreen 1200 may be exited without choosing a payer.

FIG. 13 provides an exemplary illustration of a payer list configurationfacility screen 1300 whereby a merchant may configure which payers aredisplayed in the payer choice payment control subscreen 1200. In someembodiments, the payer list configuration facility (not shown) maygenerate a ‘payer list’ that may be stored in Payment Depository 1028 ofPOS terminal system 102 for use by Payment Client 1025 a at such time asa payer choice payment control subscreen 1200 may be displayed to agiven purchaser 101. In some embodiments, the payment list configurationfacility may be accessed utilizing POS input devices(s) 1022 and POSdisplay device(s) 1024. In some embodiments, the payment listconfiguration facility may be network accessible.

The payer choice payment control subscreen 1200 and the correspondingpayment interpreter configuration screen 1300 may be pre-configurableand/or otherwise modifiable for a given POS terminal system 102 vianetwork accessed updates such that the presence, ordering, visualprominence and/or visual representation of the various payers—asdisplayed via payer choice payment control sub-screen 1200—may bealtered by the appropriate POS system vendor and/or POS system softwaredeveloper(s).

In some embodiments, the persona pre-configuration facility—utilized bythe appropriate supporting POS vendor and/or POS system softwaredeveloper(s)—, may additionally facilitate the pre-configuration of thepayer options subsequently configured by the merchant utilizing paymentinterpreter configuration screen 1300 and displayed via payer choicepayment control sub-screen 1200.

Referring further to FIG. 11, at step 1150, in some embodiments, PaymentClient 1025 a may determine from POS terminal system 102 the requestedpayment amount and include it with the EPI. For a check-in transaction,in some embodiments, the requested payment amount need not be evaluated.For a pre-authorization transaction, the requested payment amount maycommonly be the amount of an anticipated future purchase andcorresponding purchase payment transaction request. For a purchasepayment, the requested payment amount may be the cost of the purchaseditem(s). For a refund, the requested payment amount may be the amount ofthe full or partial refund.

Referring to step 1160, in some embodiments, Payment Client 1025 a mayutilize POS display device(s) 1024 and POS input device(s) 1022 toreceive payment credential(s) from a given purchaser 101. Paymentcredential(s) may vary depending on said purchaser's chosen payer,therefore Payment Client 1025 a may prompt for the appropriate paymentcredential(s) required by said chosen payer. In some embodiments,purchaser 101 may be offered more than one facility for providingpayment credential(s) and Payment Client 1025 a may receive said paymentcredential(s) from whichever POS input device(s) 1022 corresponds to agiven purchaser's choice of input facility. For example, a givenpurchaser 101 may have the choice of payment card swipe, wirelesscommunication from personal electronic device, optically scanned inputof a bar code or QR code, or manually typed credential(s) entry using akeypad. In the example of a refund, transaction identifying informationmay be input to POS terminal system 102 and utilized by Payment Client1025 a to reference stored EPI from the corresponding originaltransaction information record (not shown)—including purchaser paymentcredential(s)—that may be retrieved and utilized by Payment Client 1025a for inclusion in the EPI.

Given that some merchants operate multiple physical locations—forexample Home Depot—a purchaser 101 may make a purchase payment at onelocation and subsequently request a corresponding refund at a differentlocation of the same merchant. Payment management system 120 mayfacilitate such a distributed sequence of transactions by providingcentrality for the storage and subsequent retrieval of transactionrecords.

FIG. 14 describes step 1160 in greater detail by depicting someembodiments of receiving purchaser credential(s).

At step 1410, in some embodiments, for a transaction such as a refund,EPI including purchaser credential(s) may be retrieved in part or inwhole from a stored transaction information record such as for apurchase payment.

At step 1420, if a previous related transaction(s) may be identified andsuccessfully looked up, said previous related transaction(s)' retrievedEPI—including purchaser credential(s)—may be utilized in processing thecurrent related transaction, instead of receiving purchasercredential(s) from purchaser 101.

At step 1430, in some embodiments, purchaser credential(s) may includeaccount identifying information or purchaser identifying informationdepending on requirements of the chosen payer system(s). TCB payersutilize a unique primary account number as part or all of the purchaserpayment credential(s). Similarly, some VEP entities may issue a cardwith a machine readable PAN. Typically paired with purchaser secretinformation—e.g., a PIN manually entered by purchaser 101 via POS inputdevice(s) 1022—card sourced VEP purchaser payment credential(s) mayappear very much like those of a debit card. However, numerous VEPentities may require or offer a given purchaser 101 the opportunity ofproviding purchaser payment credential(s) without the use of a paymentcard—for example utilizing a key pad on POS input device(s) 1022 toenter them manually or communicating purchaser payment credential(s)from a smartphone or similar personal electronic device.

At step 1440, in some embodiments, if account identifying informationmay be required by the chosen payer system(s), for example a 16-digitPAN, POS display device(s) 1024 may be utilized to prompt purchaser 101for said account identifying information. POS input device(s) 1022 maybe utilized by Payment Client 1025 a to receive the identifyinginformation from purchaser 101.

At step 1450, in some embodiments, if purchaser identifying information,for example a 10-digit telephone number, may be required by the chosenpayer system(s), POS display device(s) 1024 may be utilized to promptpurchaser 101 for said purchaser identifying information. POS inputdevice(s) 1022 may be utilized by Payment Client 1025 a to receive thepurchaser identifying information from purchaser 101.

At step 1460, in some embodiments, purchaser credential(s) may includepurchaser secret information depending on requirements of the chosenpayer system(s). Some chosen payer system(s) may not require a purchasersecret. For example, some credit card payers require only the PANacquired at step 1440 above.

At step 1470, in some embodiments, if purchaser secret information maybe required by the chosen payer system(s), for example a 4-digit PIN orperhaps a 5-digit billing zip code, POS display device(s) 1024 may beutilized to prompt purchaser 101 for said purchaser secret information.POS input device(s) 1022 may be utilized to receive purchaser secretinformation from purchaser 101.

Referring again to FIG. 11, at step 1170, in some embodiments, PaymentClient 1025 a may communicate a transaction request to paymentmanagement system 120 utilizing communication facility 1081. Saidtransaction request may include EPI received from purchaser 101 via POSinput device(s) 1022 and/or EPI retrieved from transaction informationrecord(s) stored at POS terminal system 102. Furthermore, saidcommunicated transaction request may include the choice of payer andtransaction type, which may be utilized by payment management system 120in the preparation of a corresponding authorization request to becommunicated to the chosen payer system(s). In addition to informationincluded in said transaction request, such a corresponding authorizationrequest may be prepared by payment management system 120 utilizing EPIretrieved from stored transaction information record(s) of paymentmanagement system 120. Furthermore, in the example of a refundtransaction, payment management system 120 may include a retrieved PEStoken in such an authorization request, which may allow the chosen payersystem(s) to retrieve EPI from said PES token or from correspondingstored record(s) of previous related transaction(s). Accordingly,purchaser payment credential(s) may be included directly in EPI includedin such an authorization request; and/or purchaser payment credential(s)may be retrieved from stored record(s) by the chosen payer system(s)based on information such as PES token(s) included in such anauthorization request.

At step 1180, in some embodiments, an attempt to process a paymentrelated transaction may be made on behalf of POS terminal system 102 bypayment management system 120 communicating an authorization request tothe chosen payer system(s).

FIG. 15 describes step 1180 in greater detail by depicting someembodiments of requesting authorization of a payment relatedtransaction.

At step 1540, in some embodiments, payment management system 120 maydetermine if the chosen payer system(s) may be communicative. Forexample, communicativity with a given chosen payer system(s) may beverified by communicating a given authorization request and receiving acorresponding transaction response; or by separate facilities thathandshake or otherwise derive an indication of active communicativitywith chosen payer system(s), including but not limited to a transactionresponse to a prior authorization request.

If the chosen payer system(s) may not be communicative, at step 1550 insome embodiments, payment management system 120 may process a givenpurchaser 101's transaction request directly. For example, particularlyfor high-volume payers such as Visa, payment management system 120 may‘stand-in’ for the non-communicative chosen payer system(s)—i.e.,approve the authorization request—and subsequently ‘settle’ with saidnon-communicative chosen payer system(s) when communication may bere-established. Alternatively, payment management system 120 may simplydecline the authorization request and direct purchaser 101 via PaymentClient 1025 a to select a different payer choice utilizing POS displaydevice(s) and POS input device(s)—1024 and 1022 respectively.

If the chosen payer system(s) may be communicative, at step 1560 in someembodiments, payment management system 120 may request processing of thepayment related transaction by communicating a correspondingauthorization request to the chosen payer system(s). As describedpreviously, a given VEP entity or TCB payer may have unique requirementsfor the communication of an authorization request. For example: specificinformation included with an authorization request, communicationprotocol(s) and/or data format(s) utilized for an authorization request,PES token(s) utilized in an authorization request and/or in acorresponding transaction response, as well as additional securityprocedures. In an example where purchaser 101 may have chosen a VEPentity as payer, payment management system 120 may communicate with VEPentity system(s) 105 via communication facility 1085. Alternatively,where purchaser 101 may have chosen a TCB payer, payment managementsystem 120 may communicate with payment system(s) 106 via communicationfacility 1087. The chosen payer system(s) may communicate to paymentmanagement system 120 in response to an authorization request with atransaction response approving or declining said authorization request.In the example of an approval, chosen payer system(s) may communicate aconfirming authorization code possibly included in or represented by aPES token.

In some embodiments, transaction responses may be returned in adifferent order than the order in which authorization requests may havebeen communicated to a given VEP entity system(s) 105 or a given paymentsystem(s) 106. Therefore, a given transaction response received bypayment management system 120 may include an authorization requestidentifier peering said transaction response to said correspondingauthorization request. For example, such an authorization requestidentifier may be a multi-merchant token created by payment managementsystem 120, or perhaps a PES token created by a VEP entity system(s) 105or a payment system(s) 106. The specific composition and format of suchan authorization request identifier may be determined by, and thereforevary according to, requirements of a given VEP entity or TCB payer.

In some embodiments, payment management system 120 may include a giventransaction response in full or in part in a corresponding storedtransaction record. Payment management system 120 may generate andutilize a unique transaction identifier so as to subsequently identifyand retrieve such a stored transaction record. In some embodiments, sucha transaction identifier may also include identifying subcomponentsgenerated by or associated with POS terminal system 102, paymentinterpreter 1025 a and/or the chosen payer system(s). In someembodiments such a transaction identifier may include part or all of amulti-merchant token and/or a PES token.

At step 1570, payment management system 120 may communicate a“transaction outcome response” including a ‘transaction approved’indication or a ‘transaction declined’ indication to Payment Client 1025a. Payment Client 1025 a may determine based on said indication whatsort of “outcome message” to display to purchaser 101. Additionally, insome embodiments, such a transaction outcome response may include theidentifier of a corresponding stored transaction record such that saidtransaction record identifier may be stored by a given transacting POSterminal system 102 and/or included in ticket information used toproduce a receipt for a given purchaser 101. So for example, atransaction record of an approved purchase payment transaction may bestored by payment management system 120 and a corresponding transactionrecord identifier may be communicated to POS terminal system 102 via atransaction outcome response and included in a given purchaser'sreceipt. Said purchaser 101, for the purposes of acquiring a refund, maysubsequently provide said transaction record identifier from saidreceipt and POS terminal system 102 may utilize said transaction recordidentifier to request a refund transaction via Payment Client 1025 a asdescribed previously. In some embodiments, such a transaction record mayinclude the EPI from the corresponding authorization request, which maysubsequently be utilized to prepare a new authorization requestcorresponding to a previous transaction, as in this example—a refundauthorization request corresponding to a previous purchase paymenttransaction. Payment management system 120 may include a copy of acorresponding authorization code in a given transaction record. Paymentmanagement system 120 may forward a copy of said transaction record toPayment Client 1025 a along with or including a transaction outcomeindication (i.e., approved or declined), EPI and/or other transactionidentifying information that may identify the corresponding paymentrelated transaction to Payment Client 1025 a and the POS terminal system102.

At step 1580 in some embodiments, if ‘transaction approved’ isindicated, Payment Client 1025 a may display an outcome message topurchaser 101 utilizing POS display device(s) 1024 indicating approvalof the transaction. Furthermore, Payment Client 1025 a may inform POSterminal system 102 of the status of the purchaser's transaction request(i.e., approved) and may provide a copy of the confirming authorizationcode should the authorization request be approved. POS terminal system102 may utilize POS display device(s) 1024 such as a printer to producea receipt for purchaser 101 that may serve as evidence of thetransaction and may include a transaction identifier that may beutilized for subsequent related transactions such as a refund.

At step 1590, in some embodiments if ‘transaction declined’ isindicated—Payment Client 1025 a may display an outcome message topurchaser 101 utilizing POS display device(s) 1024 indicating thetransaction was declined. In some embodiments, payment management system120 may store a transaction record for a given transaction response thatdeclines a given authorization request.

Referring again to FIG. 11 at step 1190, in some embodiments, paymentmanagement system 120 may post-process the transaction. For example,payment management system 120 may store a record of a given transactioninformation including the EPI and/or the corresponding authorizationrequest and transaction response in a data base such as data tier 114and may associate a unique transaction identifier with said record. Theinformation thus recorded may be analyzed subsequently for utilizationin supplemental activities such as a loyalty program, targeted productmarketing, or otherwise to develop measurements to help manage andimprove DEP Processing System 1000.

Many additions and modifications are possible. In some embodiments, aPOS terminal system 102 may be comprised of more than one POS terminalat a given merchant location, wherein said POS terminals may benetworked together to operate within a single POS terminal system 102.Such a POS terminal system 102 with multiple POS terminals may utilize acentralized shared Payment Depository 1028 and communication facility1081.

In some embodiments, a given purchaser 101 may provide purchaser paymentcredential(s) such as for a VEP entity account or a debit card accountor a credit card account prior to making any purchases. For example, apre-authorization may be run utilizing said credential(s) to verify thelikelihood of payment for purchases that purchaser 101 may beanticipated to subsequently make. A multi-merchant token may be created,as described previously, and said token may be retained by PaymentClient 1025 a by storing it in Payment Depository 1028. The informationencoded in said token and/or referenced by it may be utilizedsubsequently to submit an authorization request via payment managementsystem 120 to a chosen payer system(s) without requiring purchaser 101to provide purchaser payment credential(s) again. Operation such as thismay sometimes be utilized for ‘running a tab’.

In some embodiments, DEP Processing System 1000 may support aconfiguration facility such that Payment Client 1025 a may be configuredto operate with POS input device(s) 1022 and/or POS display device(s)1024 different from those previously operated with a given POS terminalsystem 102.

In some embodiments, utilizing network accessed updates, Payment Client1025 a may provide operation and control support for new and enhancedPOS input device(s) 1022 and POS display device(s) 1024. For example, anenhanced POS input device may facilitate purchaser credentialing and/orauthentication by bio-metric measurement and/or reception of purchasertransported or embedded identification ‘tags’. Such tags may be embeddedin clothing, jewelry, body enhancements, or embedded sub-dermally ordeeper. Nanotechnology and biomechanical tags may be supported as well.A number of biometric technologies are already available includingfinger print scans, retinal scans, and facial, vocal, and speech patternrecognition. It may be within reason to anticipate DNA sequencing basedidentification. In some embodiments, DEP Processing System 1000 mayutilize payment management system 120 to record biometric measurementsmade of a given purchaser 101 at a given POS. Additionally, paymentmanagement system 120 may be utilized to authenticate said measurementsagainst biometric information associated with said specific purchaser101 that may have been premeasured or recorded previously—possiblyutilizing other POS terminal system(s) 102. In some embodiments, suchpre-measured biometric information may be stored by payment managementsystem 120 or for greater security may be stored by a third party system(not shown). In some embodiments, biometric measurements may beencrypted immediately at the reader head and via end to end (E2E)encryption be utilized by payment management system 120 in an encryptedform and/or communicated securely to an aforementioned third partysystem. In some embodiments, such a third party system may authenticatea given purchaser against biometric pre-measurements maintained securelyby said third party system. Additionally, a given purchaser may beidentified by a personal device that may serve to vouch for purchaser101 and provide authentication, credentialing, and/or geo-positionupdates on a periodic basis. Many scanning sensor devices that may beutilized as POS input device(s) 1022 utilize various frequencies ofradiation from sound up through visible light and higher to receivesignals. Some such scanning devices may operate in multiple frequencyranges and may combine numerous readings and measurements into acomposite identification/authentication.

In some embodiments, Payment Client 1025 a may include an‘auto-configuration’ facility whereby Payment Client 1025 a may use oneor more input/output operations to determine the identity of a given POSinput device(s) 1022 and/or POS display device(s) 1024 and havingidentified such device(s), Payment Client 1025 a may automaticallyconfigure itself to configure and/or operate said device(s).

In some embodiments, DEP Processing Systems 1000 may provide and/orfacilitate a credential(s) translation service whereby a purchaser mayenter purchaser payment credential(s) for a different payer other thanthe chosen payer—for example by swiping a Visa credit card when thechosen payer is Dwolla. In some embodiments, payment management system120 may make and/or facilitate said translation using systems andmethods including but not limited to: utilizing existing transactioninformation records from previous transactions stored in PaymentDepository 1028 and/or payment management system 120 to prepare thepurchaser payment credential(s) required by the chosen payer; orquerying the chosen payer and requesting said chosen payer attempt atranslation based on records they have access to. Such a credential(s)translation may yield a portion of purchaser payment credential(s) andstill require a given purchaser 101 to directly provide additionalpurchaser payment credential(s). For example, the aforementioned Visacard may be read by POS input device(s) 1022 and a given purchaser 101'sVisa account number read from said card may be translated to derive thatpurchaser's Dwolla primary account number or account referencing numbersuch as a ten digit phone number. In this example, purchaser 101 may berequired to input the PIN required by Dwolla. To protect a givenpurchaser's EPI, PES tokens with encrypted account information may beexchanged between payment management system 120 and the chosen payersystem(s).

In some embodiments, applicable transaction fees if any may be deductedby DEP processing system 1000 from a given transaction payment and saidtransaction fees may be credited to the appropriate entity such as theoperator of payment management system 120 and/or a given purchaser 101'schosen payer.

In some embodiments, DEP Processing System 1000 utilizing paymentmanagement system 120 and/or Payment Client 1025 a may act as proxy fora chosen payer so as to conduct a dynamic authentication of a givenpurchaser 101 using for example a challenge/response sequence based onone of several purchaser pre-configured challenge/responses.

In some embodiments, DEP Processing System 1000 utilizing Payment Client1025 a may provide support at the POS for more than one human naturallanguage—for example Spanish in addition to English. Similarly, in someembodiments, spoken language support may be available for visuallyimpaired purchasers. In some embodiments, such ‘supplemental’ languagefeatures may be enabled or disabled utilizing a configuration facilityanalogous to the payer choice selection facility exemplified by FIG. 15.

In some embodiments, Payment Client 1025 a may incorporate facilitiesfor network-accessed feature updates. Such updates would allow for addedfeature support for new transaction types, technologies and/or relateddevices. For example, a Payment Client 1025 a may be updated to controla newly introduced Near Field Communications (NFC) device.

In some embodiments, Payment Client 1025 a may coordinate display andinput control via interpretable language such as XML so as to allow POSsystem software and/or the developers of POS system software to modifyportions of the XML or augment it with CSS or similar facilitiesallowing changes to features, such as fonts and colors, so as to allow aclose match of ‘look and feel’ between screens controlled by POS systemsoftware and payment control subscreens controlled by Payment Client1025 a.

In some embodiments, the interface(s) used by Payment Client 1025 a tocommunicate and interoperate with payment management system 120 may beexposed, e.g., with ongoing documented and maintained API(s), such thatPOS system software developers may directly access said interface(s). Insome embodiments, a given POS developer may choose not to utilize or tointegrate Payment Client 1025 a into POS terminal system 102 and maychoose instead to utilize said interface(s), which may otherwise provideaccess to services to Payment Client 1025 a, thus allowing POS systemsoftware to perform the equivalent functions of Payment Client 1025 a,but with more control by POS system software over the purchaserexperience and the purchaser entered data.

In some embodiments, Payment Client 1025 a may execute as a ‘native app’or as a ‘web app’ on individual purchasers' 101 smart phones, tabletcomputers, and similar network connected personal communication andcomputing devices (not shown). In some embodiments, such an ‘appversion’ Payment Client 1025 a may communicate using a mechanism such asremote procedure call to expose an API(s) to POS system software. A‘docking facility’ may provide support for credential(s) exchange andtokenization so as to provide trusted peering with a given ‘app version’of Payment Client 1025 a and to provide security against threats such as‘man in the middle’ attacks.

In some embodiments, an app version of Payment Client 1025 a may‘tunnel’ POS terminal system 102 utilizing encrypted communications withpayment management system 120.

In some embodiments, Payment Client 1025 a may operate on paymentmanagement system 120, for example as a body of PHP code, with a genericagent (not shown) such as a browser integrated with POS system software.In alternative embodiments, Payment Client 1025 a may operate on anetwork-accessible web server.

In some embodiments, an authorization request may be prepared by PaymentClient 1025 a (rather than payment management system 120) andcommunicated via payment management system 120 to the chosen payersystem(s).

Referring to FIG. 11, in alternative embodiments, steps 1140, 1150, and1160 may occur in varying permutations of ordering.

In some embodiments, DEP Processing System 1000 may provide unique frauddetection, fraud suppression and/or fraud alert facilities. Paymentmanagement system 120, as an aggregation and distribution facilitybetween numerous merchant POS terminal systems 102 and a number of VEPentity systems 105 and payment systems 106 may be uniquely situated tocollect, store, aggregate, analyze and distribute information regardingboth legitimate and fraudulent payment related transactions. Inparticular, the distributed presence of Payment Clients 1025 a withinnumerous POS terminal systems 102 may provide payment management system120 the ability to acquire fraud related data from location(s) wherefraud may actually be physically committed. For example, a given PaymentClient 1025 a may operate an imaging system as part of POS inputdevice(s) 1022, allowing an image of a fraudulent purchaser to beacquired at the POS. More sophisticated biometric measuring POS inputdevice(s) 1022 may be able to directly identify a given fraudulentpurchaser. In another example, Payment Client 1025 a may provide afacility for a given checking clerk to ‘flag’ a transaction as ‘possiblyfraudulent’ should said clerk have a suspicion about the behavior of agiven purchaser 101. Payment Client 1025 a may also provide a fraudalert facility whereby an alert may be displayed on POS displaydevice(s) 1024 of checking clerk(s) at a POS location where a givenpurchaser 101 may be attempting utilization of a payment account thatmay be suspected to be compromised. The cumulative effect ofdistributing fraud vigilance facilities to physical POS locations may beto suppress fraudulent payment attempts at merchant locations.

In some embodiments, DEP Processing System 1000 may record transactioninformation including but not limited to: EPI, purchase ticketinformation, and/or POS identifying information. Such recordedtransaction information may be stored by Payment Client 1025 a inPayment Depository 1028 and/or by payment management system 120. In someembodiments, payment management system 120 may be utilized as a storefor aggregations of such recorded transaction information such that suchrecords may be retained longer than may otherwise be practical ordesirable for such records to be stored at a given POS terminal system102.

In some embodiments, DEP Processing System 1000 may utilize POS displaydevice(s) 1024 and POS input device(s) 1022 to provide payment relatedservices sourced from payment management system 120 directly. Forexample, following a check-in transaction establishing the identity of agiven purchaser 101, payment management system 120 may provideelectronic coupons as partial payment for a given purchase. In someembodiments, for example, DEP Processing System 1000 may thuslyfacilitate ‘turn-key’ merchant loyalty programs.

In some embodiments, the operation of Payment Client 1025 a and/or the‘look and feel’ of Payment Client 1025 a payment control subscreens mayconfigured after Payment Client 1025 a may be executing on POS terminalsystem 102. In some embodiments, Payment Client 1025 a may be configuredvia “configuration subscreens” operated by Payment Client 1025 autilizing POS input device(s) 1022 and POS display device(s) 1024. Theresulting configuration changes may be stored utilizing PaymentDepository 1028. In alternate embodiments, configuration may befacilitated via network accessible configuration software executing on asystem remote and separate from POS terminal system 102—for example, thepayment management system 120. Such a remote configuration system maysupport numerous POS terminal systems 102 such that one configurationmay be applied to one or more POS terminal systems 102—facilitatingconfigurations that may differ between POS terminal systems or may bethe same for two or more POS terminal systems. In some embodiments, agiven configuration configured utilizing such a remote configurationsystem may be stored so as to be accessible via payment managementsystem 120 and may be communicated to a given POS terminal system 102utilizing communication facility 1081.

In some embodiments, the payment management system 120 may encrypt agiven stored transaction record and include the corresponding decryptionkey in a multi-merchant token communicated to the transacting POSterminal system 102. Payment system 120 may discard its copy of theplain text decryption key, such that the decryption key from themulti-merchant token may be required in order to subsequently decryptthe transaction record stored at payment system 120.

V. Additional Enhancements—Arbitraged Enhanced Payment

The Arbitraged Enhanced Payment Processing System (AEPPS) is directed tonovel methods and systems for processing electronic payments includingbut not limited to: securing, aggregating, prioritizing, directing,payment processing and post-processing electronic payment transactions.Electronic payment transactions may include electronic paymentinformation (EPI). The AEPPS may support virtual electronic payment(VEP) as well as credit card and debit card payment transactions. TheAEPPS may augment the Distributed Enhanced Payment System, which in turnmay augment a System for Multi-merchant Tokenization.

AEPPS services utilized by merchants include, but are not limited to:prioritization of transaction processing and choice of payment processorentity(s). In some embodiments AEPPS services may include advance onreceivables. Numerous additional AEP services may be provided and theservices provided may vary based on factors such as merchant preference,governmental regulation, and payment transaction characteristics. Thearbitrage for such services may be derived in part from the differentialbetween the cost of money for a given merchant and the cost of money forthat merchant's chosen payment processor. Other factors as well mayallow for arbitrage, for example, the effective cost of services or costefficiencies derived from processing substantial volumes of paymenttransactions,

The speed with which a payment transaction is processed may be readilyapparent to the purchaser utilizing the merchant's POS system. The speedof authorization may have a real impact on the purchaser's satisfactionwith the purchase experience. Payment management entities may aggregatevery large flows of payment transactions. By prioritizing the processingof some payment transactions over other payment transactions, theapparent processing time of some payment transactions may be decreasedwhile the apparent processing time of other payment transactions may beincreased. A customer-conscious merchant may pay a premium for higherpriority processing, whereas a cost-concerned merchant may receive adiscount for choosing lower priority processing. Other merchants maychoose base-line priority processing with neither an associated premiumnor a discount.

Payment management entities and payment processing entities are serviceintermediaries interposed between merchants and VEP payers and/or TCBpayers. Each additional service provider in the payment transactionprocessing chain may add costs. Furthermore, the fees charged and theservices provided may vary from entity to entity. Consequently, theremay be incentives for a given merchant to lessen the number of suchintermediaries. A given payment management entity may aggregate paymenttransactions and then direct the flow of such payment transactions to athird party payment processing entity rather than performing paymentprocessing in-house. The AEPSS may provide the means for a given paymentmanagement entity to process payment transactions in-house, i.e.,directing payment transactions directly to VEP payers and TCBpayers—thus operating as a payment processing entity and supplanting theservices provided by third party payment processing entity(s).Furthermore, a payment processing entity utilizing such an AEPSS mayoffer payment processing services to third party payment managementservices and/or combined payment management and payment processingservices to third party independent sales organizations (ISOs).

A given merchant may have an established business relationship with anincumbent payment processing entity and therefore may be disinclined toswitch services to a payment management entity offering to provide theirown payment processing services. The AEPPS may accommodate such anelection by a given merchant by directing payment transactions from sucha merchant to a chosen third party payment processing entity as opposedto directing them to be processed in-house or by a payment processingaffiliate, thus preserving the status quo relationship with saidmerchant as that merchant's payment management entity rather thanexpanding the relationship and displacing the third party paymentprocessing entity.

From time to time, a VEP payer(s) and/or a TCB payer(s) may undergoservice outages. In such situations, so as to avoid an interruption inpayment transaction processing service, a payment management entity may“stand-in”, i.e., directly assume responsibility for authorizing theacceptance of a given purchaser's payment. In essence, this may serve asa form of service guarantee protecting merchants from service outages. Apayment management entity may provide a similar but broader serviceproviding an advance on receivables. Such a service in effect maystand-in regardless of a service outage by a VEP payer(s) and/or a TCBpayer(s). The payment processing entity may thus take responsibility forpayment to the merchant and settling the correspondingly assignedpayment transaction independently with the appropriate VEP payer or TCBpayer.

To facilitate discussion, FIG. 16 shows an exemplary structural blockdiagram of an Arbitraged Enhanced Payment Processing System (AEPPS)1600, which in some embodiments may be utilized by a given merchant'spoint of sale (POS) system 102 to facilitate processing of electronicpayment transactions on behalf of a given purchaser 101. In someembodiments, the AEPPS 1600 may be utilized without modifications oradditions to legacy payment transaction formats utilized by POS systems102 to transact electronic payments utilizing the AEPPS. The AEPPS 1600may thus be compatible with legacy POS systems without requiringmodifications to the hardware or operating software of said POS systems.

In some embodiments, the AEPPS 1600 may provide a facility (not shown)for pre-configuration of the AEPPS's processing of AEP. In someembodiments, the merchant's POS system 102 may be utilized to accesssaid pre-configuration facility. In some embodiments, a separatenetwork-accessing system (not shown)—such as a laptop computer systemwith web browser software—may be utilized to provide “out of bandaccess” support for said AEPPS pre-configuration facility. Such an outof band accessed pre-configuration facility may enable older legacy POSsystems 102 to transparently utilize features of the AEPPS withoutmodification, updating or reconfiguration of said legacy POS systems.

In some embodiments, a given merchant's POS system 102 may be updated toutilize AEPPS 1600 services. In some embodiments, a merchant's POSsystem 102 may utilize enhancements to electronic payment transactioncommunication protocols (not shown) to provide “in-band access” supportfor the AEPPS pre-configuration facility. Such an in-band AEPSSpre-configuration facility may enable a merchant's POS system 102 toperiodically revise the service configuration of the AEPPS. For example,a POS system 102 may detect an exceptionally large payment andaccordingly raise the processing priority before said large paymenttransaction is processed by the AEPPS.

In some embodiments, such an in-band AEPSS pre-configuration facilitymay be additionally enhanced to provide an “immediate-mode” AEPSSconfiguration facility such that the service configuration informationaccompanying a given transaction may apply solely to that transaction.Effectively, such an immediate-mode AEPSS configuration facility mayallow POS system 102 control of payment processing on a per paymenttransaction basis. Numerous other configuration granularities may bepossible. For example, a POS system 102 may service configure a givenAEPSS to process a whole class of said POS system's payment transactionsin a specific way. A specified class may for example be “all payments inexcess of $500” or “all American Express Card payments”. Thecombinations of granularity and class specificity may be near infinite.

In some embodiments, AEPPS processing features that may be configuredvia out of band, in-band or immediate mode configuration or otherwiseconfigured may include, but not be limited to; 1) priority processing ofelectronic payment transaction(s); 2) directing of electronic paymenttransaction(s) to a specific payment processing entity; and/or 3)advancing payment of receivables.

Referring further to FIG. 16, in some embodiments an AEPPS 1600 mayfacilitate access to payment services including AEP services for a givenmerchant's POS system 102 via a communication facility 1081 wherein saidmerchant has a direct business relationship with the payment managemententity providing said payment services utilizing payment managementsystem 120. Such an AEPPS 1600 may additionally provide payment servicesincluding AEP services for an unaffiliated merchant's POS system 1610via a communication facility 1615 wherein said merchant has a businessrelationship with a third party ISO or third party payment managemententity rather than a direct relationship with the payment managemententity providing said payment services utilizing payment managementsystem 120.

In some embodiments, a given unaffiliated POS system 1615 may utilizecommunication facilityl 615 to communicate with a given ISO feedersystem 1620. A given ISO feeder system 1620 may utilize communicationfacility 1625 to communicate with payment processing system 120.

In some embodiments, payment management system 120 may support amultiplicity of payment transaction communication protocols via paymentservice(s) 104. Such payment transaction communication protocols mayutilize encryption to secure EPI and may exchange encrypted EPI, i.e.,token(s), with POS system(s) 102 as described above. A tokenizerencryption service 110 may be utilized to encrypt and decrypt EPI asdescribed above. Encryption keys and tokens may be recorded andretrieved utilizing data tier 114 as described above. Payment service(s)104 may be augmented to support enhancements to various paymenttransaction communication protocols so as to support additional servicessuch as in-band and/or immediate mode access support for AEPPSconfiguration.

In some embodiments, payment arbitraging servicer 1640 may facilitateAEPPS services including, but not limited to: prioritization oftransaction processing, choice of payment processor entity(s), andadvance on receivables.

In some embodiments, payment arbitraging servicer 1640 may support amultiplicity of payment processing communication protocols utilizied forcommunication with third party processing system(s) 1650 viacommunication facility 1645. Such payment processing communicationprotocols may utilize encryption to secure EPI and may exchangeencrypted EPI with third party processing system(s) 1650.

In some embodiments, a given third party processing system(s) 1650 mayutilize a communication facility 1655 to communicate with paymentsystem(s) 106.

In some embodiments, payment processing servicer 1640 may support amultiplicity of payment entity communication protocols utilizied forcommunication with VEP system(s) 105 and payment system(s) 106 viacommunication facilities 1086 and 1087 respectively. Such payment entitycommunication protocols may utilize encryption to secure EPI and mayexchange encrypted EPI with said system(s) 105 and/or 106.

In some embodiments, analytics 116 may facilitate post-processingservices including but not limited to merchant accounting. Informationrequired for processing by analytics 116 or resulting from analyticsprocessing may be recorded in a data base such as data tier 114.

FIG. 17 depicts some embodiments of payment arbitraging servicer 1640.At step 1710, in some embodiments, a service control directive(s)corresponding to a given payment transaction may be retrieved so as toaffect said transaction.

FIG. 18 further details step 1710. At step 1810, in some embodiments,for a given transaction, a configuration key(s) may be prepared so as tobe utilized to retrieve an associated recorded configuration(s) suchthat said recorded configuration(s) may be utilized to control AEPservices corresponding to said transaction. In some embodiments, morethan one key and associated recorded configurations may be thuslyutilized—for example, a key associated to the recorded configuration fora specific POS system 102 operated by a given merchant corresponding tothe payment transaction and another key associated to a separaterecorded configuration for all of said merchant's locations (not shown).

At step 1820, in some embodiments a given payment transaction may beconsidered to see if it may contain configuration information.

At step 1830, in some embodiments, configuration(s) updating informationthat may be contained in a given payment transaction may be consideredto see if it may be intended to apply solely to the correspondingtransaction. Such single use configuration(s) updating information maybe referred to as “immediate mode” configuration information. In someembodiments, such immediate mode configuration information may utilizedwithout updating recorded configuration information.

At step 1840 in some embodiments, configuration updating informationcontained in a transaction and utilized to update recordedconfiguration(s) may be recorded in a data base such as data tier 114.In some embodiments, such configuration updating information may beutilized in processing the corresponding transaction as well as toupdate recorded configuration(s).

At step 1850, in some embodiments, configuration key(s) corresponding toa given transaction may be utilized to determine if there may berecorded configuration(s) corresponding to said transaction.

At step 1860, in some embodiments, a configuration key may fail tofacilitate the retrieval of any recorded configuration(s) and thusly adefault configuration(s) may alternatively be utilized.

At step 1870, in some embodiments, a configuration key(s) may facilitateretrieval of recorded configuration(s). In some embodiments, recordedconfiguration(s) may be set to default(s) such that recorded defaultconfiguration(s) may be retrieved utilizing a configuration key(s)corresponding to a given payment transaction.

At step 1880, in some embodiments, the results of processing to retrieverecorded configuration(s) corresponding to a payment transaction may beconsidered to determine if more than one configuration informationcorresponding to said transaction may have been retrieved. Furthermore,such considering may include detecting immediate mode configurationinformation that may correspond to said transaction.

At step 1890, in some embodiments, conflicts between recordedconfiguration(s) and/or conflicts between recorded configuration(s) andimmediate mode configuration information may be reconciled to eliminatesaid conflicts by determining and subsequently utilizing a reconciledconfiguration. For example, a recorded configuration may indicate that acorresponding given payment transaction may be assigned a paymentprocessing priority that is lower than base-line while an immediate modeconfiguration may indicate that said corresponding transaction may beassigned a payment processing priority that is higher than base-line.

In some embodiments, the payment arbitraging servicer 1640 may includefacilities to reconcile conflicting configuration informationcorresponding to a given payment transaction so as to result inreconciled configuration information. In some embodiments, differentpayment transactions may have different numbers of recordedconfigurations thusly retrieved. So for example, a given paymenttransaction may have a recorded configuration corresponding to a POSsystem 102 that sourced said payment transaction, whereas, a differentpayment transaction—sourced say from a different merchant—may utilize arecorded configuration corresponding to said different merchant's ISOfeeder system 1620 as well as a recorded configuration corresponding tosaid different merchant. In some embodiments, the facilities for suchreconciliation may utilize rules-based logic to derive reconciledconfiguration information. In some embodiments, random-like or otherwisearbitrary processes may be utilized in part or in whole to derivereconciled configuration information. In some embodiments, neuralnetworks, human or other biological systems and/or third partyassistance may be utilized in part or in whole to derive reconciledconfiguration information.

At step 1895, in some embodiments, a service control directive(s) isretrieved utilizing configuration information corresponding to a givenpayment transaction. Such a service control directive(s), for example inthe form of information and/or executable code, may control the servicesapplied to a given payment transaction by or under the control ofpayment management system 120. For example, a service control directivemay be a vector pointing to a given payment processing executable codesegment. In some embodiments, in addition to being retrieved utilizingconfiguration information corresponding to a given payment transaction,a service control directives(s) may be enhanced utilizing analytics,signals and measurements such as communication facility congestion andleast cost routing, percentage of compliance to service guarantees,accessibility of an affiliated payment processing servicer(s) or a thirdparty payment processing system(s).

Referring again to FIG. 17, at step 1720, the prioritization of a givenpayment transaction is determined utilizing the corresponding servicecontrol directive(s) corresponding to said transaction. In someembodiments, such prioritization may be relative to the priority ofother transactions, thus allowing a given transaction to be processedsooner or perhaps later than some other payment transaction(s) alsoawaiting processing. In some embodiments, such prioritization may bebased in part or in whole on service guarantees that in some embodimentsmay utilize specific performance metrics to demonstrate compliance. Insome embodiments in order to support a desired prioritization for agiven transaction, said transaction may be directed to an affiliatedparty payment processing servicer or third party payment processingentity. In some embodiments, statistics may also be recorded to providemetrics relative to prioritization of payment transactions. Saidstatistics may be processed by analytics 116 and utilized to refineprioritization to attain goals such as improved service guaranteeperformance, lowered costs, greater processing efficiencies.

FIG. 19 further details step 1720. At step 1910, in some embodiments,the service control directive(s) for a given transaction may beconsidered to determine if a higher than base-line prioritization may beaccorded by said service control directive(s). Such a higher prioritizedtransaction may be termed a “preferred” transaction.

At step 1920, in some embodiments a given payment transaction may beassigned a higher priority than base-line priority based on thecorresponding service control directive(s).

At step 1930, in some embodiments, the service control directive(s) fora given payment transaction may be considered to determine if a lowerthan base-line priority may be accorded by said service controldirective(s). Such a lower prioritized transaction may be termed a“discounted” transaction.

At step 1940, in some embodiments a given payment transaction may beassigned a lower priority than base-line priority based on thecorresponding service control directive(s).

At step 1950, in some embodiments a given payment transaction may beassigned a base-line priority based on the corresponding service controldirective(s). In some embodiments, base-line priority(s) may beconsistent for all payment transactions or may vary between classes oftransactions. A given base-line priority may remain static for longperiods of time or may be adjusted on a more frequent basis. Adjustmentsto a base-line priority may for example be arbitrary and/or may be theresult of analysis of processing metrics.

Referring again to to FIG. 17 at step 1730, in some embodiments, a givenpayment transaction is directed for payment processing based on theservice control directive(s).

FIG. 20 further details step 1730. At step 2040, in some embodiments, aVEP indicator corresponding to a given payment transaction may beconsidered to determine if it is a VEP transaction.

At step 2050, in some embodiments, the service control directive(s)corresponding to a given payment transaction may be considered todetermine if said transaction may be processed directly.

At step 2060, in some embodiments, a given transaction may be forwardedto a third party payment processing system(s) for processing. Such atransaction may be termed a “forwarded transaction”.

At step 2070, in some embodiments, a given transaction may be retainedfor processing—for example “in-house” utilizing payment processingservicer 1660 or by some other affiliated payment processing servicer(not shown). Such a transaction may be termed a “retained transaction”.

Referring again to FIG. 17, at step 1740, a given retained transactionmay be processed in-house in accordance with the service controldirective(s) corresponding to said payment transaction. Such an in-houseprocessed transaction may be forwarded to a VEP entity system(s) 105 orpayment system(s) 106 as appropriate. In some embodiments, should a VEPentity system(s) 105 or payment system(s) 106 be off-line or otherwiseunavailable for payment processing, payment management system 120utilizing payment processing servicer 1660 may stand-in for a giventransaction as described previously above. In some embodiments, paymentprocessing servicer 1660 may be utilized to process a given transactiondirectly so as to provide a given merchant an advance on receivables. Insome embodiments, a given payment transaction may be processed by aremote third party payment processing system(s) 1650 in accordance withthe service control directive(s) corresponding to said paymenttransaction. Such a remote third party payment processing system(s) 1650may output to payment management system 120 a transaction outcomeindication (not shown) corresponding to said payment transaction.

At step 1750, in some embodiments, payment management system 120utilizing payment service(s) 104 may return a transaction outcomeindication—corresponding to a given processed transaction—to the sourceof said transaction, i.e., a POS system 102 or an ISO feeder system1620.

At step 1760, in some embodiments, payment management system 120 maypost-process a given transaction. For example, payment management system120 may store a record of a given transaction information including theEPI and/or the corresponding authorization request and transactionresponse in a data base such as data tier 114 and may associate a uniquetransaction identifier with said record. In some embodiments, such atransaction record may include some or all of the configurationinformation and or service control directive(s) corresponding to saidtransaction. In some embodiments, sensitive portions of a transactionrecord may be secured using encryption. In some embodiments, transactionrecords may be utilized to generate account reports for merchants and/orISOs. In some embodiments, transaction records may be analyzed forutilization in supplemental activities such as a loyalty program,targeted product marketing, or otherwise to develop measurements to helpmanage and improve transaction configuration reconciliation, transactionprioritization and transaction processing.

VI. Additional Enhancements—Expedited Automated Merchant Boarding

Expedited automated merchant boarding (EAMB) may utilize systems andmethods to create an operational enhanced payment management system(EPMS) embodiment for a given newly recruited merchant customer of apayment management service provider. Such an embodiment may include acorresponding operational context within the EPMS, commonly referred toas a “merchant account”. The merchant account may be utilized to supportpayment management services for the corresponding merchant includingarbitraged enhanced payment (AEP) services as well as support foracquisition, accumulation, analysis, and recording of information thatmay be utilized to bring up and sustain the interoperable communicationand processing of payment transactions and other related transactionsbetween the merchant's point of sale (POS) terminal system (or systems)and the newly selected payment management service provider's EPMS.

Merchant boarding as currently practiced may be a mixture of manual andautomated processes, but manual processes may be critical and mandatoryparts of the overall process. The steps for merchant boarding may oftenbe distributed across time, across multiple organizations and acrossmultiple systems. Additionally, the order in which some steps occur maybe difficult to control. Merchant boarding may be detail laden,potentially time consuming, and may require systematic consideration andcomplex analysis to complete. Therefore, the merchant boarding processis an excellent, but challenging, candidate for computerized systemautomation. With many potential obstacles to automation, any automatedmerchant boarding solution may require adaptability, reliance onexisting automation when possible, and simple and easy to understandprocesses for conversion and use.

From the perspective of the payment management service provider it maybe desirable to automate merchant boarding within said provider's EPMSso as to lessen the time between the merchant's decision to use thatprovider and the instant when services from that provider go live. Forexample, in situations where the merchant has a previously installed anoperational POS terminal system and may be switching to a new paymentmanagement service provider, there may be a dearth of POS systeminstallation activities to mask the time required for merchant boarding.Additionally from the perspective of the payment management serviceprovider, automation of the merchant boarding process within the EPMSallows for economies of scale as automation costs (and benefits) may bespread over a multiplicity of merchant customers. Moreover, automatingthe EPMS portion of merchant boarding may help increase the quantity ofnew merchant customers that may be boarded concurrently to the EPMS.This may be particularly desirable during busy and time-criticalcommercial periods such as Valentine's Day, Halloween or the Christmasholiday.

To facilitate discussion, FIG. 21 shows an exemplary structural blockdiagram of an Expedited Automated Merchant Boarding System EAMBS 2100,which in some embodiments may be utilized to facilitate boarding of anewly recruited merchant's POS terminal system(s) including but notlimited to POS terminal system(s) component identification andcorresponding determination of pre-boarding certification, associationof POS terminal system(s) to the merchant's account, risk assessment andunderwriting verification, service turn-up and payment managementservice validation. (Note: for brevity in the description that follows,the term “POS system” is used to connote point of sale terminal system.Additionally, to avoid excess verbiage, descriptions of POS system 102and/or communication facility 1081 apply equally to POS system 1610and/or communication facility 1625 respectively, unless statedexplicitly otherwise.)

There may be a multiplicity of POS system configurations ranging fromsingle stand-alone POS terminals to sprawling multi-lane mega-storeinstallations and even to geographically distributed POS systems. Theequipment within a given POS system 102 may be manufactured by andfurther integrated by a variety of organizations resulting in theutilization of (and therefore need to support) a broad range of paymenttransaction communication protocols (not shown). For example, a givenmerchant may have multiple locations as well possibly as an e-commerceweb site and each of these may utilize different system components andcommunicate utilizing different payment transaction communicationprotocols (e.g., DSI, Global Text, Vital).

A payment transactions aggregating intermediary, such as an independentsales organization (ISO) feeder system 1620, may modify or augmenttransactional content exchanged with a given POS system 1610.Additionally, such an intermediary may translate payment transactioncommunication protocols between a given POS system 1610 and the EPMS120. For example, the POS system 1610 may use Global Text to communicatewith the ISO's feeder system 1620 and the ISO's feeder system 1620 mayuse DSI or ISO 8583 to communicate with the EPMS 120. More subtly, theintermediary feeder system may utilize the same protocol between boththe systems 1610 and 120, but alter protocol utilization and/ortransported content. (Note: regarding ISO 8583, the “ISO” in this termstands for International Standards Organization not “independent salesorganization” as ISO does otherwise in the description.)

FIG. 22 depicts some embodiments of an EAMBS. At step 2210 it may beadvantageous for the payment management service provider to “front load”the merchant boarding process by anticipating and preparing for merchantboarding requirements starting prior to or during the period the newmerchant may be recruited. Such front loading may help the paymentmanagement service provider to offer a competitively expeditious lowhassle and low surprise boarding experience for the newly recruitedmerchant. In particular, major time consuming processes related toEPMS-to-POS system integration and interoperability testing may beundertaken before or during recruiting of the new merchant customer.

Referring further to step 2210, such an anticipatory interoperabilitydetermination process may be termed “POS system pre-boarding”. In someembodiments, POS system pre-boarding may be conducted in concert withPOS developers and/or POS vendors. It may involve sharinginteroperability specifications and conducting compliance reviews andtesting such that various embodiments of POS systems 102—includinghardware, software and communication facilities—may be determined inadvance to be interoperable with the EPMS 120.

FIG. 23 further details step 2210. At step 2310, in some embodiments, apayment management service provider may consider the POS system 102 ofthe prospective merchant customer to determine if it may include POSsystem component(s)—such as a POS input device 1022, a POS output device1024, or a POS processor 1025—that may require pre-boarding. A POSsystem component may require pre-boarding because this may be the firstpre-boarding attempt, or perhaps it may have been pre-boardedpreviously, but at a different upgrade version level.

Referring to FIG. 21 as relates to step 2310, in some embodiments an ISOfeeder system 1620 may be interposed between the prospective merchantcustomer's POS system(s) 1610 and the payment management serviceprovider's EPMS 120. Such an ISO feeder system 1620 may have alreadyhave been pre-boarded, but in the instance of a newly recruited ISO,such an ISO feeder system 1620 may require pre-boarding in addition tothe merchant's POS system 1610. For example, pre-boarding for such anewly recruited ISO may include verifying correct interoperation betweenISO feeder system 1620 and EPMS 120 such that the payment managementservice provider may perform “stand-in” authorizations on behalf of theISO.

At step 2320, the payment management service provider may include in thepre-boarding process the assessment of POS system component(s). Suchassessment may be conducted in cooperation with the merchant's POSdeveloper and/or vendor. The assessment may include but not be limitedto sharing and reviewing: interoperability specifications, sample codeknown to interoperate with EPMS 120, POS system component designspecifications and code segments. Additionally, the assessment mayinclude but not be limited to: joint design and code walkthroughs, POSsystem integration planning, and planning for third party certificationssuch as Payment Application Data Security Standard (PA-DSS).

At step 2330, POS system pre-boarding may be further leveraged byproviding POS system technology—including but not limited to software,hardware and system integration assistance, development tools and testfacilities—that may be utilized by POS system developers to integrate“turn-key” system components (not shown) that may reliably interoperatewith the payment management service provider's EPMS 120. The turn-keysystem components may be provided by the payment management serviceprovider as part of an embodiment of a distributed enhanced payment(DEP) processing system 1000 as described previously above. Utilizingfacilities such as encryption and EPMS-sourced POS display contentinsertion, security related system functions and facilities may beshifted away from the POS system 102 and to the payment managementservice provider's EPMS 120. The corresponding technical burden, timeinvestment, and testing cost for third party certifications such asPA-DSS may thusly be shifted from individual POS developers to thepayment management service provider. In some embodiments, the paymentmanagement service provider may provide similar turn key technology andtechnical assistance to a payment aggregating intermediary such as anISO such that the ISO's feeder system 1620 may securely exchange paymenttransactions with the payment management service provider's EPMS 120 insuch a way as to similarly off-load the burden of third partycertifications.

At step 2340, the payment management service provider may test a givenPOS system component to assure that the POS system component may beinteroperable with the payment management service provider's EPMS 120.Testing may also be conducted to assess likely compliance with PA-DSSand/or similar security requirements. Testing may be automated utilizingtest scripts, which may for example be written in markup language suchas XML. Test facilities including test scripts may be made available bythe payment management service provider to POS developers/vendors tofacilitate EPMS interoperability testing prior to POS system componenttesting by said payment management service provider.

At step 2350, a POS system component may successfully pass testing forinteroperability with the payment management service provider's EPMS120. Such a successfully tested POS system component may be termed to be“EPMS certified” and may be included in a list of EPMS certified, i.e.,pre-boarded, POS system components. Such a list may be recorded, say ondata tier 114, for subsequent automated retrieval. There may be morethan one level of EPMS certification. For example, one level ofcertification may be “EPMS interoperable” whereas a different level ofcertification may be “EPMS interoperable and PA-DSS pre-screened”.Additionally, such a list may include “auto-boarding signature”information such that a POS system component may be subsequentlyauto-boarded by the EPMS 120. For example, subsequently duringauto-boarding, such auto-boarding signatures from the EPMS certificationlist may be compared by the EPMS 120 against auto-boarding informationreceived from the POS system 102. This may be done in order to searchfor a EPMS certification list match for the POS component.

In some embodiments, a “virtual composite component” may be tested. Forexample, such a virtual composite component may be a specificmake/model/version POS input device 1022 operating behind an interposedPOS processor 1025, wherein the specific make/model/version of the POSprocessor may alter the apparent behavior of the POS input device asmeasured at the test communication interface (not shown). Such a testcommunication interface may emulate and/or utilize the communicationfacility 1081 or 1625 of the EPMS 120. Virtual composite components maybe composed of multiple devices and/or systems to an arbitrary depth.Pre-boarding a previously untested POS system component may be aniterative process wherein the component itself may be tested as astand-alone POS system component and then as one or more virtualcomposite components. Consequently, virtual composite component testingmay allow numerous potential POS system component configurations to bepre-boarded. Such pre-boarded configurations may range for example froma single stand alone POS terminal (not shown) to a multi-devicemulti-vendor POS system (not shown) integrated with an ISO feeder system1620.

Referring again to FIG. 22, at step 2220, a merchant account may beestablished within EPMS 120 for the newly recruited merchant. Newmerchant customers may be recruited directly by the payment managementservice provider or via a variety of intermediaries including but notlimited to ISOs and POS system developers and vendors.

Referring further to step 2220, the initial information acquiring dialogwith a prospective merchant customer for payment management services maybe conducted for example by an ISO. A given ISO may be disinclined todirectly expose automated merchant account records, e.g., CRM records,to the EPMS of the payment management service provider. This may bemotivated by security concerns or may simply be due to the lack ofmanpower to implement such an interface to the EPMS 120. Accordingly,the release of new merchant account information may be manuallyinitiated, perhaps by posting records on an FTP server or emailing aspreadsheet. Or for some ISOs the release of new merchant accountinformation may be automatic. Regardless of the approach, automating thetransfer of merchant account records to the payment management serviceprovider's EPMS 120 may be a straight forward technical exercise wellunderstood by one skilled in the art. In some embodiments, the paymentmanagement service provider may supply application programming interface(API) specifications, sample code, loadable software (e.g. binaryfiles), documentation, and testing assistance to facilitate theautomated transfer of merchant account information in a pre-determinedrecord data format to the EPMS.

FIG. 24 further details step 2220. At step 2410 in some embodiments, theEPMS 120 may receive merchant account information for the prospectivenew merchant customer. Such information may be received from an ISO orother third party. Or the EPMS 120 may obtain merchant accountinformation directly from the prospective merchant customer utilizing anaccount servicer 2110, which for example may be accessed remotelyfacilitated by any of a multiplicity of technologies including but notlimited to: a POS system, a mobile device application or a web-accessedapplication. Furthermore, the account servicer 2110 may be utilizedduring and subsequent to merchant boarding to monitor the progress ofmerchant boarding and more in general monitor merchant account status.In addition to monitoring, the account servicer 2110 may also be used tomodify, correct and/or update merchant account information during andsubsequent to merchant boarding. So for example the merchant may utilizethe account servicer, facilitated perhaps by a web-accessed application,to modify the “service set”, i.e., the payment management servicesprovided to the merchant via the EPMS 120. Additionally, subsequent tosuccessful merchant boarding, the merchant may utilize the accountservicer 2110 to view payment transaction information including but notlimited to associated debits and credits to the merchant's settlementaccount. In some embodiments, third parties such as POS developers mayaccess the merchant's account via the account servicer 2110 on themerchant's behalf.

Referring further to step 2410, merchant identifying information, whichmay be included in the merchant account information, may be key tocreating a new merchant account; subsequently accessing the merchantaccount; as well as helping secure access to the account. Examples ofmerchant identifying information may include but not be limited to:social security number, tax payer ID, date of birth and mother's maidenname. More mundane information such as business address, zip code, emailaddress and telephone number may also be included in merchantidentifying information. The EPMS 120 may also supplement the merchantidentifying information with synthesized merchant identifyinginformation such as a merchant account user name and a user accountpassword. Portions of the merchant account information may be scannedand received electronically in a manner similar to the popular “digitalsnapshot” depositing of checks, which utilizes the camera of a smartphone. In this way information such as the merchant's business name,address, telephone number, settlement account routing number andcorresponding account number may be read from a check or deposit slip.Merchant account information may also include but not be limited to POSterminal system descriptive information pertaining to the merchant'sbusiness facilities such as the count of POS system(s), POS systemlocation(s), POS system lane(s) and POS system operators (e.g.,check-out clerks, managers, maintenance technicians). Merchant accountinformation may also include identification of the service set selectedfor and/or by the new merchant customer. In some embodiments, merchantaccount information may include information associating the merchantwith one or more other merchants so as to share utilization ofmulti-merchant tokenized information between the merchant and thoseother merchants.

FIGS. 26a and 26b provide exemplary screen shots utilized for inputtingand displaying portions of merchant account information.

Referring further to FIG. 24, at step 2410, the EPMS 120 may receivemerchant account information that includes “archival payment transactionrecords”. The new merchant customer may have access to a multiplicity ofsuch archival payment transaction records resulting from relationship(s)with one or more payment management service providers and/or otherpayment processors prior to the relationship with the new paymentmanagement service provider of EPMS 120. Archival payment transactionrecords may be encoded without encryption. However, such unencryptedarchival payment transaction records may have been recorded in a formatdifferent from the format of payment transaction records utilized by theEPMS 120. For example, an archival payment transaction record may havebeen formatted with a different ordering and sizing of its recordfields. Reformatting archival payment transaction records may requireprocesses including but not limited to: reordering the record fields,resizing a record field(s), translating encoding of data within recordfield(s), deleting any extraneous record field(s) and synthesizingcontent of data record field(s) not present in a given archival paymenttransaction record. For example, the archival payment transactionrecords may be accessible to the POS system 102 and therefore thepayment transaction information within them may be extracted,reformatted and communicated via communication facility 1081 for furtherutilization by the new payment management service provider's EPMS 120for subsequent new payment transactions such as returns. Such receivedarchival payment transaction records may be tokenized by EPMS 120(similar to a newly received payment transaction as exemplified by FIG.10 and described previously above) with an encryption key (which mayfacilitate subsequent decryption for example via the hardware securitymodule 108) and an encrypted transaction separately recorded and a tokenreturned to the POS system 102 corresponding individually to each of thearchival payment transaction record(s) received by EPMS 120. In someembodiments, the tokens returned may be encrypted utilizing thetokenizer encryption service 110. Also, in some embodiments two or morearchival payment transaction records may be received by EPMS 120 in asingle “batch”. Accordingly, EPMS 120 may transmit a “batchtokenization” response of two or more batched tokens to the POS system102 with a corresponding token for each of the batched archival paymenttransactions. Additionally, as with any token(s) transmitted by EPMS 120to POS system 102, each token returned in a batch response orindividually may include a primary account number and an expiration.Furthermore, any such tokenization response by EPMS 120 to receivedarchival payment transaction(s), whether received batched orindividually, may utilize multi-merchant tokenization such that eachreturned token additionally includes a group ID.

At step 2420, the EPMS 120 may create a merchant account by assigning aunique merchant account number to the new merchant customer and byrecording said account number in addition to the merchant accountinformation the EPMS has received—perhaps on a data tier 114 within theEPMS 120. Sensitive merchant account information such as accountidentifiers, date of birth, social security number and tax payeridentification number may be recorded in an encrypted form. A group IDmay be assigned to the merchant account so as to facilitatemulti-merchant tokenization and in some embodiments the group ID may beincluded in the merchant ID. The group ID associates two or moremerchants in such a way that they may share in the utilization ofmulti-merchant tokens corresponding to their common group ID. Merchantlogs may be created; and the merchant ID and any such group ID may berecorded in the merchant logs. The group ID may be updated. For examplethe merchant may enter their business into a larger multi-merchantfranchise organization. Any updated group ID may be recorded in themerchant logs as well.

Referring further to step 2420, a POS terminal system ID may be assignedand unique POS operator identifiers may be created for each of POSsystem operators 2101 (e.g., check-out clerks, managers, merchant,service technicians, etc.) and corresponding log-on credentials (e.g.,passwords). POS system lane IDs may also be created corresponding toeach POS terminal system check-out station. A data base—perhaps recordedin data tier 114—may include merchant configuration information such asvarious POS terminal system related IDs. Furthermore, merchant accountinformation, for example merchant settlement account identifyinginformation, may be included in such merchant configuration information.Identifiers including but not limited to merchant ID, group ID, POSterminal system ID, POS operator identifiers and POS system lane IDs maybe transmitted by the EPMS 120 to the POS system 120 so that suchidentifiers may be utilized subsequently in payment transactions andother communications exchanged between the POS system and the EPMS. Insome embodiments, prior to or during the merchant boarding process, EPMS120 via account servicer 2110 may provide a facility whereby themerchant (or merchant's agent, e.g., ISO or POS developer) may “reserve”specific identifiers—including but not limited to merchant ID, POSterminal system ID, POS operator identifiers (including user names andpasswords) and POS system lane IDs. The EPMS 120 may verify theappropriate construct and other characteristics (e.g., uniqueness) ofsuch identifiers and if acceptable to the payment management serviceprovider may record the identifiers (say in data tier 114) such thatthey may be created/assigned utilizing the reserved values at such timeas the merchant may be subsequently boarded. Reserving such identifiersalso serves to prevent them from being assigned to other merchants.

At step 2430, the EPMS 120 may verify that the new merchant customer hasbeen risk-assessed and has been awarded underwriting approval. Such riskassessment and underwriting may be performed by the payment managementservice provider (for example to allow in-house payment processingservice) or by a third party payment processor such as Global PaymentSystems. From a technical perspective, such assessment and approval maybe conducted by an expert system and be fully automated, but as a matterof business practice it may include some component of human-conductedassessment and approval. However, even with a partially manual approach,automation may assist the process. For example, the merchant's archivaltransaction records plus payment transaction records and creditperformance records of similar merchant customers may be analyzed byEPMS 120 to synthesize an experience-based assessment of likely risk.Additionally, supplemental data and assessments may be obtained from oneor more third-party credit rating agencies such as TransUnion. Thereforeautomated analysis may be used to assist (or potentially supplant)humans in making the final risk assessment and underwriting approvaldecision(s). Assessment and underwriting approval information, includingan indicator of acceptance or denial, may be recorded in a data basesuch as data tier 114 where it may be verified by the EMPS 120.

At step 2440, the payment management service provider may review thepayment services selected for utilization by the new merchant customer.Such a review may be conducted with the merchant directly as well aswith third parties such as an ISO or a POS system developer or vendorwho may be familiar with the merchant's requirements or intended POSsystem utilization. Such a review of said requirements and utilizationmay lead to the revision of the set of selected services that may beprovided for the new merchant. Any such revision in selected servicesmay be recorded as an updated service set utilizing a facility such as adata tier 114. Certain of the selected payment management services orcombinations of such services may correspond to cost differentials suchthat those services may be subject to arbitrage and may be providedutilizing the facilities of the EPMS's payment arbitraging servicer1640. In some embodiments, the service set review process may beautomated facilitated by the account servicer 2110.

FIG. 25 further details step 2440. At step 2510 in some embodiments,“blended cost” profiles may be displayed that may assist the merchant(and/or merchant agent(s) such as a POS developer or an ISO) inreviewing the service set selected for the merchant. Such a review maybe concerned with the cost of the service set and what alternativecost-benefit trade-offs may be available to the merchant. The cost ofutilizing a given service set may be transaction dependent. Fees mayaccumulate on a services-per-transaction basis and may vary based on thecharacteristics of the subject transactions. The multi-transactioncumulative cost to the merchant may result from a blend of paymenttransactions processed and the corresponding fees for the servicesapplied, i.e., the “blended cost”. As an example, blended cost may becomputed by averaging numerous transaction fees over the count ofcorresponding transactions. So for example, blended cost may becalculated as the average service fee per transaction over a three monthtime frame. It may be apparent to one skilled in the art that the timeframe for such a calculation may be shortened or lengthened depending ondesired determination of correspondingly shorter or longer term costtrends, histories and projections. By way of analogy, one may think ofthe charts produced on a financial web site where the yield (cumulativeloss/gain plus blended costs) of a mutual fund may be viewed utilizingvarious timeframes. A blended cost profile may be devised in amultiplicity of ways so as to represent blended costs in such ways as toprovide insight into those blended costs, including but not limited tothe source, nature and/or composition.

It may be a complex task to project the future blended costs of themerchant's service set. As may be the case with the above mutual fundyield graphing analogy, having an index (or indices) to compare againstmay be desirable. A payments management service provider may have amulti-year data store of processed payment transaction records for amultiplicity of merchants. Such a data store may be processed to computeblended cost indices based on various subsets of stored transactions. Sofor example, the EPMS 120 may compute a 1-year “Chinese take-outrestaurant” blended cost index so that the merchant who owns a Chinesetake-out restaurant may get some idea of what competitors pay in blendedcosts. Such indices may in turn be utilized in establishing a “blendedcost target”.

A blended cost index may be decomposed so as to display the constituentfees and the corresponding services that generated the fees. In otherwords, a service set may be displayed in such a way as to characterizethe nominally ‘typical’ service set corresponding to a given blendedcost index. Such a service set decomposing display may be comparedagainst the merchant's current service set, which may be similarlydecomposed and displayed. In one embodiment, such service set costdecompositions may be represented as pie charts wherein the differentpie slivers represent services and the volume of a sliver represents thecorresponding ‘normalized’ fee cost. It may be apparent to one skilledin the arts that a multiplicity of techniques for normalization may beapplied (e.g., mean, median, weighted average, etc.).

Displaying blended cost indices may be especially useful to a newmerchant customer since the merchant may not have an established feehistory with their newly selected payment management service provider.However, any merchant's archival payment transactions received by theEPMS 120 may be utilized to synthesize an ‘as if’ fee history for themerchant as if the merchant had processed those archival paymenttransactions with the newly selected payment management serviceprovider. Such a synthesized fee history may then be further decomposedfor analysis and represented utilizing blended cost profiles, which maybe compared against various blended cost indices.

At step 2520, having displayed various blended cost profile(s) and/orblended cost index(s), the merchant or the merchant's authorizedagent(s) may utilize EPMS 120 via the account servicer 2110 to select a“strawman” service set such that corresponding projected blended costprofiles may be displayed for a given strawman service set. This mayallow the potential cost impact of various revised service sets to beconsidered so as to assist in selecting a newly revised service set forthe merchant (or reinforcing the retention of the merchant's currentservice set selection).

A key underlying cost of payment processing is fraud loss andprevention. A potential level of risk may nominally be ascribed to agiven payment transaction based on the quality and quantity of purchaseridentifying information included in the transaction's electronic paymentinformation (EPI). Such purchaser identifying information that may beutilized to limit fraud risk may be termed “risk mitigatinginformation”. In some embodiments, the EPMS 120 may display blended costprofiles with costs associated with risk mitigating informationspecifically detailed. Consequently, the merchant may revise the serviceset so that the EPMS 120 may utilize greater or lesser quantities ofrisk mitigating information included in the EPI for the processing of agiven payment transaction. So for example, the account servicer 2110 mayfacilitate the selection of one or more types of “risk mitigatinginformation” that may be included in a payment transaction requestcorresponding to a specific service(s) within the service set.Correspondingly, at the time of acquiring payment information from thepurchaser, the merchant (or the merchant's POS system) may requestadditional information from the purchaser such that the POS system mayinclude it in the payment transaction. For example, if the merchant isaccepting payment by phone, a CCV code may be requested; or at a gasstation, the POS terminal in the pump may request a zip code.

At step 2530, having considered various strawman service set revisions,the EPMS 120 via account servicer 2110 facilitates the confirmation ofthe service set selected by the merchant or the merchant's agent(s) tobe utilized by EPMS 120 to provide payment management services.Furthermore, subsequent to merchant boarding, the merchant may similarlyreview and revise the service set repeatedly as desired. In someembodiments, the merchant may be charged a fee by the payment managementservice provider for revising the service set.

In some embodiments, the EPMS 120 may include transaction costinformation in some or all transaction responses to the merchants POSsystem 102. For example, each payment transaction response may includetransaction cost information specific to that transaction. In anotherexample, a payment transaction response may include transaction costinformation that corresponds to more than one of the merchant'stransactions perhaps in the form of a cost average. Additionally, apayment transaction response may also include transaction costinformation derived from the payment transactions of other merchants.The transaction cost information included in transaction responses maybe utilized by communication intermediaries such as ISO feeder system1620 and/or by POS system 102 to record, analyze and display accumulatedcost information to the merchant (or merchant agent). The POS system 102as part of a distributed enhanced payment (DEP) processing system mayreceive down-loadable technology from the EPMS 120 such that the POSsystem 102 may display blended cost profiles utilizing transaction costinformation recorded at the POS or down-loaded from the EPMS or both.Furthermore, the POS system 102 via account servicer 2110 of EPMS 120may facilitate reviewing, revising and updating of the merchant'sservice set. A merchant agent such as a POS developer may aggregatetransaction cost information corresponding to multiple merchants inorder to analyze transaction cost trends. The merchant may be charged aservice fee by the payment management service provider for providingtransaction cost information.

At step 2540, having received confirmation of the service set, EPMS 120may transmit “transaction guidance” to POS system 102. Such transactionguidance may include but not be limited to information that indicatesrisk mitigating information that may be included in payment transactionssuch that the merchant may gain access to potentially more favorabletransactions fees. Transaction guidance may similarly be utilized bycommunication intermediaries such as ISO feeder system 1620 so as tofacilitate communication of risk mitigating information from POS system102 to EMPS 120.

The acquisition and communication of risk mitigating information in agiven payment transaction may be a distributed process potentiallyinvolving the POS system operator 2101, POS system 102, communicationintermediary(s) (e.g., ISO feeder system 1620), and the EPMS 120.Therefore, revising the service set may be necessary, but notnecessarily sufficient in altering the risk mitigating informationutilized by the EPMS 120 in effecting processing of a given paymenttransaction. For example, an additional item of risk mitigatinginformation may be the purchaser's driver license number (DLN).Typically, a DLN may not be encoded onto a payment card; therefore somelevel of POS system operator 2101 involvement may be required toseparately input the DLN. Additionally, the POS system must both supporta means to input the DLN and also encode the DLN in the EPI of acorresponding payment transaction. Such encoding must be interoperablewith communication intermediaries and with the EPMS 120. Furthermore,communication intermediaries must forward the EPI-encoded DLN withoutadulterating it or filtering it out. And the EPMS 120, must include theDLN as part of the payment transaction request utilized to initiatepayment processing.

The payment management service provider, may utilize the facilities ofthe EPMS 120 as a distributed enhanced payment (DEP) processing systemto propagate down-loadable technology to DEP-compatible POS systems soas to support reception and utilization of transaction guidance and/orthe inputting and encoding of risk mitigating information. Additionally,the payment management service provider may propagate risk mitigatinginformation acquisition technology “out of band” to POS developers andvendors and to communication intermediaries—for example in the form ofsource code software and API documentation.

The merchant's blended costs for payment transactions may be altered andperhaps lowered utilizing “cost sharing partnership(s)” whereby one ormore additional parties shares in bearing a portion of the blended costof (and perhaps the revenues of) a given payment transaction. Potentialcost sharing partners may be parties who have an interest in themerchant's utilization of payment management services including but notlimited to: the payment management service provider, ISO, POS developer,POS vendor, payment processor. TCB and VEP payers, Cost sharing may forexample be in the form of discount(s), rebate(s) and/or revenue sharing.So for example, a VEP payer may share a portion of any given transactioncost wherein the corresponding payment transaction utilizes that VEPpayer's services. So further by example, a VEP payer (say Dwolla) pays aportion of the merchant's cost for any transaction that utilizes thatVEP payer for purchase payments. Such a cost sharing partnership maymotivate the merchant to utilize and or participate in promoting theservices of a given cost sharing partner.

In some embodiments, cost sharing partner(s) may include one or morenon-merchant-vendor third parties such as charities or promotionalorganizations. So for example a charity may become a cost sharingpartner of the merchant in exchange for the merchant requestingdonations for that charity from purchasers. Such purchaser donations maybe facilitated at the merchant's point of sale similar to a purchase andmay perhaps share a payment transaction with a given purchase. In someembodiments, such a payment transaction may be partially or fullyautomated by the merchant's POS system. Technology to facilitate suchautomation may be propagated utilizing the distributed enhanced payment(DEP) facilities of the EPMS 120. There may be a multiplicity of costsharing formulas, well known to one skilled in the arts, which may beapplied to transaction cost sharing partnerships with merchant customersof payment management services. The EPMS 120 may facilitate a given costsharing partnership by applying the corresponding cost sharingformula(s) so as to determine the share of costs (and or revenues)effecting each of the parties of the cost sharing partnership.Additionally, the EPMS 120 via the payment arbitraging servicer 1640 mayfacilitate the electronic brokering of individual cost sharingpartnerships in such a way as may create a market for cost sharingpartnerships. In some embodiments, a given cost sharing partnership maybe applied to a non-blended cost or costs. Additionally, in someembodiments, the merchant may enter into one or more cost sharingpartnerships. Therefore, one or more cost sharing partnerships may applyto a given payment transaction. Furthermore, the applicable cost sharingpartnerships may vary from transaction to transaction of the merchant.

Referring again to FIG. 22 at step 2230, “auto-boarding” refers tosystems and methods whereby the EPMS 120 may identify one or morecomponents of the merchant's POS system 102 so as to facilitatesuccessful interoperation between EPMS 120 and POS system 102. A givencomponent of the POS system 102 may be apparent to the EPMS 120 due toauto-boarding information that the POS component (or an intermediary)transmits to the EPMS 120. The auto-boarding information may be comparedby the EPMS 120 against pre-boarding EPMS certification list records soas to confirm any pre-boarding of that component type. Thereby, it maybe determined whether or not the detected POS system component may bepresumed to be interoperable with the EPMS 120. Additionally, thereceived auto-boarding information may include (or imply) the POS systemcomponent's version information so as to determine that the POS systemcomponent has been upgraded to a known interoperable version level asindicated by pre-boarding certification list records. If not soupgraded, the POS system 102 may be upgraded so as to achieve aninteroperable version level. In some embodiments, such an upgradeprocess may be automated, for example via a down-loaded softwareupgrade. Also, such an upgrade process may be part of a DEP processingsystem 1000 (as detailed previously above). In some embodiments, one ormore upgrade versions may await pre-boarding, therefore a POS componentmay be downgraded to a known interoperable version level until such timeas additional upgrade version(s) pass EPMS certification.

Referring to FIG. 10 (detailed previously above), so as to furtherillustrate step 2230, in some embodiments a POS system 102 may becomprised of one or more POS system components. For example, POS system102 may include POS input device(s) 1022, POS output device(s) 1024 andPOS processor 1025. POS processor 1025 may operate as a communicationintermediary for POS input device(s) 1022 and POS output device(s) 1024.In some embodiments, POS processor 1025 may operate as a communicationproxy for such POS component (s) in such a way that only ElectronicPayment Information (EPI) from those POS component(s) may be forwardedto the EPMS 120. In a similar fashion, an ISO feeder system 1620 mayfacilitate direct or proxied communication between a given POS system1610 and the EPMS 120. Regardless of the operation of POS processors andISO feeder systems as communication intermediaries and potentially asproxies, EPI may be communicated via a given POS input device within agiven POS system, and via (an optional) ISO feeder system, so as to becommunicated to EPMS 120 with the EPI preserved. Consequently,regardless of the interposition of such communication intermediaries,the EPI content of a payment transaction effectively may tunnel allcommunication intermediaries. Therefore, such EPI content may provide anunobstructed signal path from a given POS input device 1024, or from agiven POS system 102, to the EPMS 120 such that that signal path may beutilized to facilitate auto-boarding by encoding auto-boardinginformation in the EPI of payment transaction(s). Such auto-boardinginformation (effectively masquerading as EPI) may be passed unobstructedby intermediaries, but may be detected and determined by the EPMS 120 tobe auto-boarding information rather than the EPI of a legitimate paymenttransaction. Therefore, existing payment transaction communicationprotocols may be utilized without modification or extension to supportauto-boarding.

FIG. 27 further details step 2230. At step 2710, the EPMS 120 mayreceive a payment transaction including EPI wherein that EPI includesauto-boarding information (as opposed to EPI representing a legitimatepayment transaction). For example, a specially devised payment card withauto-boarding information in the card's magnetic reader strip may bescanned at a POS input device 1022 so as to communicate such EPI-encodedauto-boarding information to the EPMS 120 in order to facilitateauto-boarding by the EPMS. Additionally, auto-boarding information mayalso be entered manually, for example via a PIN pad of a POS inputdevice 1022. In some embodiments, a given POS system component—say a POSoutput device 1024—may lack the facility to transmit transactions to theEPMS 120 in such a way that said component may be apparent to the EPMS120. Nonetheless, such a “non-transacting” POS component may beauto-boarded. For example, a payment transaction including EPI-encodedauto-boarding information may be generated utilizing a mag-strip“auto-boarding card” read via a POS input device 1022. In that way, sucha POS input device 1022 may be made manually to proxy in theauto-boarding process for one or more non-transacting component(s).

Clearly a multiplicity of EPI encodings of auto-boarding information maybe readily apparent to one skilled in the arts. For example, a paymenttransactions including the auto-boarding information of a POS systemcomponent may be synthesized by a POS processor 1025 rather than readingit from a POS input device 1022. In some embodiments, the informationcontents of transactions other than payment transactions may be utilizedto facilitate a signal path to convey auto-boarding information to theEPMS 120. Furthermore, auto-boarding information may be communicatedutilizing mechanisms (in part or in full) other than existing paymenttransaction communication protocol implementations. For example,auto-boarding information may be communicated utilizing adaptationand/or extension of ISO 8583. However, a given legacy POScomponent—particularly if operated without an intermediary acting as aproxy—may lack support for such protocol adaptations or extensions.Additionally, interposed communication intermediaries such as an ISOfeeder system 1620 may alter or filter such auto-boarding information.

Automating the EPMS side of the POS system boarding process, i.e.,auto-boarding, may be immediately attainable based solely on theinitiative of a given payment management service provider, whereasautomating the POS side of the POS system boarding process may requirethe coordinated initiative of POS system vendors, POS developers, andmerchants who may need to contemplate discarding legacy POS systemcomponents that may lack support for automatic POS system side boarding.Additionally, the operation of interposed payments aggregating feedersystems as communication intermediaries may further complicate and delaysuch automation. Nonetheless, an EPMS side auto-boarding solution mayinteroperate with newly developed or enhanced POS systems such that thewhole process—both EPMS side and POS system side—may be fully automated.

At step 2720, a given POS component identified by auto-boarding (at step2710 above) may be checked against a list of pre-boarded POS componentsto determine if said component may have been EPMS certified forinteroperation with the EPMS 120 as previously detailed above at step2210.

At step 2730, a given POS component identified by auto-boarding (at step2710 above) and checked against a pre-boarding certification list (atstep 2720 above) may be determined to be absent from said list. In someembodiments, the payment management service provider may undertake tocertify such a non-certified POS system component such that it maysubsequently be auto-boarded. Such a post-merchant-recruitmentcertification effort may be time consuming and may potentially result inan extended inability to certify EPMS interoperability with saidcomponent. In some embodiments, such a lack of certification may requirethe exclusion or replacement of a non-certified POS system component ormay require a carefully considered manual over-ride of auto-boarding forthat non-certified component. Sub-optimal auto-boarding outcomes maypotentially be avoided by considering the POS system component make-upof each prospective new merchant customer so as to expeditiouslyidentify non-certified POS system components well in advance of theauto-boarding process. Auto-boarding may operate as a fail-safemechanism should such precautions fail. In some embodiments,auto-boarding may be performed one or more times—as new POS systemcomponents may be integrated as part of the installation of a POSsystem—up to the point where all new POS components may be successfullyauto-boarded. In some embodiments, an auto-boarding emulation or“dry-run” facility may be included as part of the pre-boarding testingdescribed previously at step 2210.

In some embodiments, a POS processor 1025 or an ISO feeder system1620—interposed between a given POS system component and the EPMS120—may serve as a proxy for said POS system component such that theoperation of said system component may effectively be masked from theEPMS 120. Such an interposed proxy, perhaps filtering and/or translatingtransactions between said system component and the EPMS 120, may rendermoot any issue of direct pre-boarding certification of said systemcomponent by essentially virtualizing and therefore altering saidcomponent's apparent operation from the perspective of the EPMS 120. Sofor example, a POS processor 1025 may proxy for a non-certified POSinput device 1022 such that payment transactions sourced from saiddevice 1022 appear to the EPMS 120 to be sourced from a certified POSsystem component device or from a pre-boarded virtual compositecomponent as described previously above. Conversely, in this example,POS processor 1025 may proxy for the EPMS 120 such that paymenttransaction responses sourced from EPMS 120 may be made compatible withsaid POS input device 1022. Such proxied virtual device operation maysometimes be referred to as device emulation and may use techniques suchas spoofing that well understood by one skilled in the art.Consequently, changes made to an interposed communication intermediarymay be adequate to create a “work-around” solution to problems withpre-boarding certification of a given POS system component. In otherwords, rather than altering the direct operation of the component, alterits apparent proxied operation. This may be a preferred approach for“orphaned” legacy devices that may be poorly supported or not supportedat all or that may be deemed not worth upgrading.

At step 2740, upon auto-boarding the POS system components of the POSsystem 102, EPMS 120 may record a roster of said POS system components(with successfully auto-boarded components indicated as such). In someembodiments, that roster may be recorded and subsequently retrievedutilizing a data tier 114. Such a roster may be updated from time totime as the addition, alteration, or removal of POS system componentsmay be detected during interoperation of the EPMS 120 and the POS system102.

Referring again to FIG. 22 at step 2240, having established an accountfor the new merchant customer including recording the payment managementservices, i.e., the service set, selected by and/or for the new merchantcustomer, and having auto-boarded the merchant's POS system(s) 102, theselected payment management services may be “turned-up”, i.e., enabledto operate on EPMS 120. Turning up a given service may include but notbe limited to configuring that service's operation based on thecharacteristics determined from the merchant's account informationand/or characteristics of the merchant's POS system 102 as determined byauto-boarding and subsequent interoperation. Such “serviceconfiguration” information may be recorded, say in data tier 114, forongoing utilization and potential update by EPMS 120.

At step 2250, having turned up the selected payment management servicesat EPMS 120, a series of one or more “validating” payment transactions(and perhaps other transactions as well) may be conducted by an operator2101 utilizing POS input device 1022 (or virtually by POS system 102) soas to determine that the selected payment management services operatesuccessfully. Such a series of transactions may be referred to as a“validating transaction script”. For example, a validating transactionscript 2105 may include but not be limited to: debit cardtransaction(s), credit card transaction(s), VEP transaction(s) (e.g.,PayPal, Dwolla, etc.), purchase transaction(s), return transaction(s),payment reversal transaction(s), pre-authorization transaction(s). Othernon-payment validating transactions may include but not be limited to:POS system sign-on(s) and sign-off(s), POS lane operator sign-on(s) andsign-off(s), privileged operator (e.g., manager) over-ride(s).

At step 2260, having validated POS system 102 interoperation with EPMS120, operation of the selected payment services may be enabled thusallowing the new merchant customer to utilize the EPMS 120 in the courseof the merchant's day-to-day commercial activities, which in turn mayresult in service fee revenues for the payment management serviceprovider.

At step 2270, by recording information at each of the preceding steps ofEAMB, a large set of data may be accumulated to establish a “base-linedata set” for a new merchant customer. The base-line data set mayinclude: statistics, choices, changes, errors, upgrades, POS systemconfiguration(s), service configuration(s), archival paymenttransactions and many other items of information reflecting the newmerchant's POS system interaction with EPMS 120 during EAMB. Such abase-line data set may be updated and augmented over time as themerchant utilizes the payment management services of EPMS 120 thuscreating one or more “operational data set(s)”. Base-line data sets andoperational data sets may be compared and analyzed so as to determineopportunities to offer improved or additional services to merchants.They may also be used in comparative analyses performed by the analytics116 servicer for risk assessments in support of underwriting additionalnew merchant customers. Such analytical information may also beshared—assuming appropriate care—with third parties.

Many additions and modifications are possible. In some embodiments, forexample new merchant account information may be obtained utilizing anATM or debit card swipe. Information such as routing number and accountnumber may be absent from the card, but potentially may be obtained viaa secure communication facility (not shown) with the card-issuingfinancial institution. Just as a PIN may be utilized to securelyauthorize a payment transaction; it may also authorize such a merchantcustomer account information transaction.

Additionally, in some embodiments, auto-boarding may also be utilizedseparate from merchant boarding so as to detect version level(s) andthusly support upgrades to an existing merchant customer's POS system102, including but not limited to the addition of new POS systemcomponent(s).

VII. Additional Enhancements—Cost Altering Payment Services

Cost altering payment services (“CAPS”) may enable merchants topotentially acquire additional information that may be processed so asto lessen costly payment errors and fraud.

Nominally, a potential level of risk may be ascribed to a given paymenttransaction based on the quality and quantity of “risk mitigatingpayment transaction information” included in the transaction'selectronic payment information (“EPI”) received from a merchant's pointof sale terminal system (“POS system”), which in turn may potentially beaugmented from additional sources. Risk mitigating payment transactioninformation includes purchaser and POS terminal system identifyinginformation and payment transaction describing information that may beutilized to limit fraud risk may be termed. Three types of riskmitigating payment transaction (“RMPT”) information may help limiterrors and fraud: “purchaser primary credential(s)”; “purchasersupplemental credential(s)”; and “payment incidental qualifier(s)”.Taken together, purchaser primary credential(s) and purchasersupplemental credential(s) may at times be referred to as purchaserpayment credential(s).

Purchaser primary credential(s) may identify the payment account andname a “legitimate payment account user” (i.e., the account owner orauthorized account user), but may lack specific information to identifythe purchaser as the named legitimate payment account user. A creditcard, for example, may encode purchaser primary credentials includingthe primary account number, account owner's name and expiration date.With the increased use of credit cards on-line (where payment cardinformation may be stolen virtually invisibly), the traditional relianceon the physical security of a payment card may increasingly fail as animpediment to payment fraud. Therefore, purchaser primary credential(s)may serve mostly in limiting errors as opposed to mitigating fraud.

As an augmentation to purchaser primary credential(s), purchasersupplemental credential(s) may validate the purchaser's authority totransact a payment by providing additional information that typicallymay be pre-associated with the payment account and/or legitimate paymentaccount user, but commonly may be absent from any encodingelectronically readable from a physical “payment implement” (e.g.,payment card or payment facilitating device). Examples of purchasersupplemental credential(s) include but are not limited to: addressverification service (AVS) information (e.g., billing zip code), PINcode, and payment account password. Purchaser supplemental credential(s)commonly comprise information known to the legitimate payment accountuser, but not easily known to a fraudster even if the payment implementmay be in the fraudster's possession. In many instances, purchasersupplemental credential(s) may relate to the identity of the legitimatepayment account user.

Purchaser supplemental credential(s) may be subject to compromise byfraudster tactics including eavesdropping and on-line gambits (e.g.,‘phishing’) whereby the legitimate payment account user may unwittinglydivulge purchaser supplemental credential(s) to a fraudster. Therefore,relying on purchaser supplemental credential(s) that may be difficult tochange if compromised (such as date of birth or billing zip code) may beless risk mitigating than utilizing readily changeable shared secretssuch as a PIN or a password. The ability to migrate to more secure andmore reliable and more easily revised purchaser supplementalcredential(s) may depend in large measure on the ability to adapt POSsystems to accept new and changing forms of supplemental credential(s).POS systems that operate as components of a distributed enhanced payment(“DEP”) processing system may provide such an automated adaptablecapability. Alternatively, POS systems may also be updated by POSdevelopers, but such solutions may likely be piecemeal and may takesignificantly longer to deploy over the diverse range of POS systems.

Payment incidental qualifier(s) may provide information about thecircumstances of a given payment transaction that may be indicative ofthe occurrence or absence of fraud. Payment incidental qualifiers mayinclude any information measurable or derivable about the circumstancesof a purchase. So for example, a payment card or other identificationbearing a photograph of the legitimate payment account user may bepresented by the purchaser. A POS system operator may in turn indicatevia the POS system that the purchaser has been validated against thatphotograph. This may indicate the likelihood of the physical presence ofthe legitimate payment account user.

Incidental payment qualifier(s) included with a payment transaction maybe combined with records of prior payment transactions in order todetect potential fraud. An incidental payment qualifier may describesomething(s) about the circumstances of the purchase payment includingbut not limited to: the purchase (purchase location, item, quantity,etc.); the payment (payment implement, payment implement presence,payment amount, etc.); and the purchaser (geo-location, signature,sensor image, etc.). For example, the location of the POS system mayserve as an indicator of unusual activity if that location may besubstantially distant from the legitimate payment account user's typicalareas of payment activity. As another example, a large payment attemptmay be preceded by one or two smaller payment transactions in quicksuccession. These earlier purchases may be taken as potential ‘dry runs’to be followed by an attempt at a large fraudulent purchase.

As payment becomes more virtualized, personal electronic devices such assmart phones may assume the role of virtual payment implements. In somemobile payment applications, a personal electronic device may transactpayment with a POS terminal system or possibly even bypassing the POSterminal system. Additionally, payment transaction requests mayincreasingly be communicated over shared networks such as a LANs,intranet, or internet such that the bona fides of the communicatingdevices may not be reliably inferred from the communication connectionor path utilized. Therefore, explicit device and system credentialingmay be utilized increasingly to mitigate risk of fraud; and suchcredential(s) may be included as purchaser primary credential(s),purchaser supplemental credential(s); and/or derived from incidentalpayment qualifier(s) in payment transaction requests.

Payment processors and payment entities may utilize numerous algorithmsto combine immediate incidental qualifier(s) and recorded paymenttransaction records in order to mitigate fraud risk. Communicationtechnology such as GPS, Wi-Fi and cellular networks may enable nearcontinuous tracking of the location of individual purchasers. The adventof small embeddable low power communication devices (e.g., NFC) mayenable the tracking of purchasers, their payment implements, as well asmany of their purchases. Additionally the growing governmental andprivate investment in security technologies such as ubiquitous publicsecurity video coverage, biometrics, as well as terrestrial, airborneand space-based tracking platforms may provide a very powerful andreliable means to track and instantaneously locate both purchasers andtheir payment implements. And of course, the growth of self reporting oflocation through social media and internet communication, and theexplosive growth of civilian posting of audio recordings, snap shots andvideos to third party web sites (often in near real-time) may provide ahuge source of time-correlated location information. Such trackinginformation acquired by third party tracking enterprises may provide agrowing source of incidental payment qualifiers that may be combinedwith incidental payment qualifier(s) acquired directly or indirectlyfrom POS system(s). Incidental qualifiers may include coincidentalinformation potentially related to but not necessarily directlyincidental to the purchase payment. For example, the geo-location of theaccount owner's automobile at the time of the purchase payment.

The nominal classification of components of payment transaction relatedinformation into categories such as purchaser primary credential(s),purchaser supplemental credential(s), and payment incidentalqualifier(s) may vary depending on the payment processor and/or paymententity for a given payment transaction. Regardless of the particulars ofsuch classification, the quantity and quality of RMPT informationincluded in a given payment transaction (or recorded or third-party RMPTinformation that may additionally be associated with the paymenttransaction) may serve to decrease the likelihood of error and fraud.Accordingly, payment processors and/or payment entities may provide morefavorable payment transaction rates in exchange for increased quantityand/or quality of such RMPT information. Such lowered costs maypotentially be shared with the merchant customer in exchange forproviding such additional RMPT information and may thereby alter paymenttransaction costs.

A base-line (i.e., essential minimum) amount of RMPT information may berequired for processing a given payment transaction. Such “base-lineRMPT information” may for example include required purchaser primarycredential(s) such as: a payment account number, a correspondinglegitimate account user's name, and a corresponding expiration date.Base-line RMPT information may vary from payment transaction to paymenttransaction based on other characteristics of a given paymenttransaction—perhaps requiring differing purchaser supplementalcredential(s) and/or payment incidental qualifier(s). For instance,processing a credit card payment transaction may additionally require abilling address zip code; whereas processing a debit card paymenttransaction may additionally require a PIN.

In some embodiments, a received payment transaction request that lacksthe required base-line RMPT information may be declined. In otherembodiments, a response may be provided back to the POS system to notifythe POS system of missing base-line RMPT information.

RMPT information in excess of the base-line may be termed “additionalRMPT information”. In some embodiments, additional RMPT information maybe read automatically from a payment implement. However, in someembodiments, additional RMPT information may be acquired facilitated bya prompt, which may for example be displayed by the POS system or spokenby the POS system operator. And in some embodiments, some additionalRMPT information for a given payment transaction may be readautomatically while other additional RMPT information for the sametransaction may be acquired utilizing a prompt to the POS systemoperator, the purchaser, or both.

To facilitate discussion, FIG. 28 shows an exemplary structural blockdiagram of a CAPS system 2800, which in some embodiments may facilitatea given merchant customer (not shown) to provide additional RMPTinformation 2805 (for example acquired from or ascertained aboutpurchaser 101) so as to potentially obtain altered payment transactioncost(s). The relative difference between the payment management serviceprovider's transaction costs and the payment transaction costs chargedto the merchant may be viewed as a form of arbitrage. In someembodiments, such payment transaction cost arbitrage may be included aspart of the arbitraged enhanced payment services provided by a paymentarbitraging servicer 1640. (Note: to avoid excess verbiage, descriptionsof POS system 102 and/or communication facility 1081 apply equally toPOS system 1610 and/or communication facility 1625 respectively, unlessstated explicitly otherwise. The term “merchant” may refer to a merchantcustomer of a payment management service provider and/or tointermediaries or agent(s) of such a merchant acting on the merchant'sbehalf. A merchant agent may for example be a POS developer, a POSvendor, or an independent sales organization (“ISO”). For brevity, theterm “transaction cost” may be used interchangeably with paymenttransaction cost.)

FIG. 29 depicts some embodiments of a CAPS system. At step 2910, anenhanced payment management system (“EPMS”) 120 of a payment managementservice provider may receive additional RMPT information.

FIG. 30 details some embodiments of step 2910 of FIG. 29. At step 3010,a EPMS 120 may facilitate acquisition of additional RMPT information.

In other embodiments, the EPMS may provide additional RMPTinformation-based payment transaction cost altering automatically. Thismay be more ‘POS developer friendly’—particularly for more primitive POSterminals—by limiting the POS system's added functionality to theacquiring and providing of additional RMPT information without theadditional need to specifically support or coordinate correspondingpayment management service(s). Such embodiments may allow basic andgeneric POS systems 102 to interoperate with a CAPS system 2800.

FIG. 31 further details some embodiments of step 3010. At step 3110,“cost profiles” may be provided that may assist the merchant inconsidering the transaction costs associated with payment managementservices selected for the merchant (i.e., “the service set”). The costto the merchant of utilizing a given service set may be transactiondependent. Fees may be accrued on a service(s)-per-transaction basis andmay vary based on the characteristics of the corresponding transactions.The multi-transaction cumulative cost to the merchant may result from ablend of payment transactions processed and the corresponding fees forthe services applied, i.e., the “blended cost”. As an example, blendedcost may be computed by averaging numerous transaction fees over thecount of corresponding transactions. So for example, blended cost may becalculated as the average service fee per transaction over say a threemonth time frame. The time frame for such a calculation may be shortenedor lengthened depending on desired determination of correspondinglyshorter or longer term cost trends, histories and/or projections. By wayof analogy, one may think of the charts produced on a financial web sitewhere the yield (cumulative loss/gain plus blended costs) of a mutualfund may be viewed utilizing various timeframes. A cost profile may bedevised in a multiplicity of ways so as to represent costs in such waysas to provide insight into those costs, including but not limited tohistory, composition and/or event correlation.

It may be a complex task to project the future costs corresponding to aservice set. As may be the case with the above mutual fund yieldgraphing analogy, having an index (or indices) to compare against may bedesirable. A payment management service provider may have a multi-yeardata store of processed payment transaction records and correspondingfees for a multiplicity of merchants. Such a data store may be processedto compute cost index(s) based on blended costs derived from varioussubsets of stored transactions. So for example, the EPMS 120 may computea 1-year ‘Chinese take-out restaurant cost index’ so that the merchantwho owns a Chinese take-out restaurant may get some idea of whatcompetitors pay in costs. Such an “industry segment cost index” (orseveral cost indices) may in turn be utilized in estimating a costtarget, which may serve as an approximate cost goal as the merchantconsiders various possible alternative service sets.

At step 3120, having considered various cost profile(s) and/or costindex(s) characterizing the potential cost of the existing service set,the merchant may utilize EPMS 120 via the account servicer 2110 toconsider the potential cost benefit of an alternative “contingentservice set”. Such a contingent service set, if selected, maypotentially cause the EPMS 120 to utilize greater or lesser quantitiesof RMPT information (as available) for the processing of a given paymenttransaction which may in turn alter the payment transaction cost. Toassist the merchant in considering the potential cost benefit of a givencontingent service set, the EPMS 120 may provide corresponding“projected cost profile(s)” based on projected transaction costs forthat contingent service set. The account servicer 2110 of EPMS 120 maybe utilized by the merchant to repeatedly revise and consider contingentservice sets so as to facilitate selecting the contingent service set(or retaining the merchant's current service set). As part of theprocess of merchant boarding, in some embodiments, the merchant mayconsider one or more contingent service sets so as to select the serviceset. In some embodiments, subsequent to merchant boarding, the merchantmay consider one or more contingent service sets so as to select a newservice set or retain the service set.

A cost index derived from blended costs may be decomposed so as todisplay the constituent fee components and the corresponding services.In other words, a service set may be profiled in such a way as tocharacterize the nominally ‘typical’ set of payment management servicescorresponding to a given cost index. Such a service set decomposing costprofile may be compared against the merchant's current service set costprofile, which may be similarly decomposed. In one embodiment, such aservice set decomposing cost profile may be represented as a pie chartwherein the different pie slivers represent services and the volume of asliver represents the corresponding ‘normalized’ fee cost. Amultiplicity of techniques for normalization may be applied (e.g., mean,median, weighted average, etc.).

Providing cost indices may be particularly useful to a new merchantcustomer. Unfortunately, the typical new merchant customer may not havean established transaction cost history with their newly selectedpayment management service provider. However, any archival paymenttransaction records (i.e., records of transactions with other paymentmanagement service provider(s)) of that merchant received by the EPMS120 may be utilized to synthesize “virtual fee history” for thatmerchant—as if, hypothetically, the merchant had processed thosearchival payment transactions with the newly selected payment managementservice provider utilizing the service set. Such a virtual fee historymay then be further analyzed and represented utilizing cost profiles,which may be further compared against various cost indices as describedabove.

FIG. 32 provides an exemplary screen shot of a cost profile provided ina pie chart format, which may represent the transaction costscorresponding to a merchant such as a restaurant owner. Cost profilesmay characterize archival, recorded and/or potential transaction costsutilizing a multiplicity of representations. Some representations, forexample FIG. 32, may include components of transaction costs that may beattributable to factors other than RMPT information. A broaderunderstanding of the components of transaction costs may help themerchant further revise the service set to alter transaction costs. Insome embodiments, transaction costs may be represented in a cost profileas a statistical distribution of characteristics of numerous paymenttransactions with each represented cost-contributing characteristichaving a frequency represented by a percentage. It may be possible thatmultiple characteristics apply to a given payment transaction; thereforethe sum of percentages may nominally exceed 100%. However, by totalingoccurrence percentage figures and dividing 100 by that total, anormalizing factor may be computed and applied to the percentages usedto create the pie chart such that they total to 100%.

FIG. 33 provides an exemplary screen shot of a comparative cost profileprovided in a bar chart format, which may represent the blendedtransaction costs of the service set of a merchant such as a Chinesetake-out restaurant owner. The comparative cost profile may facilitatethe comparison of potential transaction costs corresponding to anindustry segment typical service set, the service set (i.e., the currentoperational service set), and a contingent service set.

Referring again to FIG. 31 at step 3130, the EPMS 120 via accountservicer 2110 may facilitate the confirmation of the service set (eithercontingent or current operational) selected by the merchant to beutilized by EPMS 120 to provide payment management services.

The acquisition and communication of additional RMPT information in agiven payment transaction request may be a distributed processpotentially involving the POS system operator (not shown), POS system102, communication intermediary(s) (e.g., ISO feeder system 1620), andthe EPMS 120. As a consequence, revising the service set in and ofitself may not be sufficient to result in actually acquiring additionalRMPT information to be utilized by the EPMS 120 in effecting processingof a given payment transaction. For example, an additional item of RMPTinformation may be the purchaser's driver license number (“DLN”).Typically, a DLN may not be encoded into a payment implement; thereforesome level of POS system operator involvement may be required toseparately acquire the DLN. So, in an example of a successfultransaction, a chain of events may occur: the POS system 102 inputtingthe DLN (perhaps keyed in by the POS operator) and encoding the DLN inthe EPI of a corresponding payment transaction request; the encoded EPIbeing interoperable with any communication intermediaries such that theymay forward the EPI-encoded DLN without adulterating it or filtering itout; and the EPMS 120 including the DLN as part of the paymenttransaction request utilized to effectuate payment processing. In orderto facilitate such a chain of events, in some embodiments, the EPMS 120may generate and propagate information (i.e., “transaction guidance”)that may potentially facilitate the subsequent acquisition of RMPTinformation that may be utilized by a given service set.

At step 3140, having received confirmation of the service set, EPMS 120may provide transaction guidance for utilization by POS system 102. Thetransaction guidance may include but not be limited to information thatindicates additional RMPT information that may be included in paymenttransactions by the POS system so as to potentially result in alteredtransaction costs. Transaction guidance may also be utilized bycommunication intermediaries such as ISO feeder system 1620 so as tofacilitate communication of RMPT information from POS system 102 to EPMS120. Transaction guidance may vary depending on the service set selectedand the corresponding additional RMPT information that service set maysupport.

Furthermore, transaction guidance may be propagated in numerous ways.For example, the payment management service provider, may utilize thefacilities of the EPMS 120 within a DEP processing system to propagatedown-loadable technology to a DEP-compatible POS system 102 so as tofacilitate the inputting and encoding of additional RMPT information.Additionally, the payment management service provider may propagate riskmitigating information acquisition technology “out of band”, i.e.,separate from the facilities of a DEP processing system, to POSdevelopers and vendors and to communication intermediaries such asISOs—for example in the form of source code software and APIdocumentation.

Returning to FIG. 30 at step 3020, having facilitated the acquisition ofadditional RMPT information utilizing for example transaction guidance,the EPMS 120, in accordance with the service set, may utilize suchadditional RMPT information included in a payment transaction request toeffectuate payment processing. In some embodiments, additional RMPTinformation may be included in a single payment transaction requestreceived from the POS system 102. In other embodiments, additional RMPTinformation may be included in a series of two or more associatedpayment transaction requests received from the POS system 102. In someembodiments, additional RMPT information acquired from the POS system102 may be augmented by additional RMPT information provided by and/oraggregated by the EPMS 120. EPMS 120 may include additional RMPTinformation sourced from a third party, for example geo-locationinformation from a cell phone provider.

For some payment transactions, the POS 102 may attempt but be unable toprovide additional RMPT information. However, the inclusion of therequired base-line RMPT information may be sufficient for the EPMS 120to effectuate processing of the payment transaction.

Returning to FIG. 29 at step 2920, the EPMS 120 may alter the paymenttransaction cost based on additional RMPT information received from thePOS 102.

FIG. 34 further details some embodiments of step 2920. At step 3410,having effectuated payment processing of a payment transaction requestthat may include additional RMPT information, the EPMS 120 may derive atransaction cost delta based on the additional RMPT information receivedfrom the POS 102, so as to alter the transaction cost based on suchadditional RMPT information. In some embodiments, the EPMS 120 may alterthe transaction costs corresponding to more than one payment transactionsuch that the alteration may not be specifically attributable to thecharacteristics of an individual payment transaction. For example,providing additional RMPT information may result in altered costs ofpayment transaction processing for the payment management serviceprovider such that the payment management service provider may alter themerchant's transaction costs in aggregate, perhaps in the form of ablock discount. In some embodiments, the altered payment transactioncost may be based on numerous factors including but not limited to: theadditional RMPT information included in a given payment transaction; theaggregate quantity and/or quality of additional RMPT informationincluded in multiple payment transactions from the merchant; theproportion of payment transactions including additional RMPT information(versus those with base-line RMPT information); the measured change intransaction costs for the payment management service provider.Additionally, in some embodiments, the payment management serviceprovider may alter payment transaction costs to a given merchant basedon the aggregate performance of multiple merchant customers. In someembodiments, the payment management service provider may initiallyprovide an additional “bonus cost delta” so as to enhance the motivatingeffect on the merchant of altering payment transaction costs. Such anadditional bonus cost delta may possibly diminish with subsequentpayment transactions so as to taper off and possibly end.

At step 3420, the EPMS 120 may provide transaction cost information tothe POS system 102. In some embodiments, the EPMS 120 may includetransaction cost information in some or all transaction responses to thePOS system 102. For example, a payment transaction response may includetransaction cost information specific to the corresponding transaction.In another example, a payment transaction response may includetransaction cost information that corresponds to more than one of themerchant's payment transactions perhaps in the form of a cost average.Additionally, a payment transaction response may also includetransaction cost information derived from the payment transactions ofother merchants. In some embodiments, the transaction cost informationincluded in transaction responses may be utilized by a communicationintermediary such as ISO feeder system 1620 and/or by POS system 102 torecord, analyze and provide accumulated cost information to themerchant.

In some embodiments, the POS system 102 as part of a DEP processingsystem may receive down-loadable technology from the EPMS 120 such thatthe POS system 102 may display cost profiles to the merchant utilizingtransaction cost information recorded at the POS or provided from theEPMS or both. Furthermore, the POS system 102 via account servicer 2110of EPMS 120 may facilitate reviewing, revising and updating of themerchant's service set during or subsequent to merchant boarding. Amerchant intermediary such as a POS developer may aggregate transactioncost information corresponding to multiple merchants in order to analyzetransaction cost trends.

Additionally, in some embodiments, the POS system 102 as part of a DEPprocessing system may receive down-loadable transaction guidancetechnology from the EPMS 120 that may be utilized in relation totransaction information in addition to, or other than, additional RMPTinformation.

Furthermore, in some embodiments, a CAPS system may provide transactioncost analysis and/or service set revision and review facilities relatedto components of the merchant's transaction costs other than additionalRMPT information.

In some embodiments, the merchant may utilize a terminal device otherthan a POS terminal system, such as a PC connected via the internet, toaccess and utilize facilities provided by the account servicer 2110 ofEPMS 120—for example, service set review and revision facilities; ortransaction cost analysis.

In sum, the present invention provides systems and methods for costaltering payment services (CAPS). Such systems and methods enable thealtering of payment transaction costs based on receiving additional riskmitigating payment transaction (RMPT) information from POS terminalsystems. Such systems and methods may include facilities: enabling themerchant to review and alter the service set so as to effectuateprocessing of payment transactions including additional risk mitigatingtransaction information so as to alter payment transaction costs;providing transaction guidance that may facilitate the acquisition ofadditional RMPT information via the POS terminal system; and providinginformation to POS terminal systems describing transaction costsincluding altered transaction cost(s).

While this invention has been described in terms of several embodiments,there are alterations, modifications, permutations, and substituteequivalents, which fall within the scope of this invention.

It should also be noted that there are many alternative ways ofimplementing the methods and systems of the present invention. It istherefore intended that the following appended claims be interpreted asincluding all such alterations, modifications, permutations, andsubstitute equivalents as fall within the true spirit and scope of thepresent invention.

What is claimed is:
 1. A method for mitigating fraudulent activities inan electronic payment transaction system, the method comprising:receiving, by a point of sale terminal system over an electronicnetwork, a service set application from a payment management system;installing, by the point of sale terminal system, the service setapplication at the point of sale terminal system; displaying, via agraphical user interface of the point of sale terminal system, aplurality of service sets using the installed service set application,wherein each service set comprises: i) security information to becollected by the point of sale terminal system from one or more sourcescomprising: Global Positioning System (GPS), Wi-Fi and cellularnetworks, embeddable low power communication devices, public securityvideo coverage, biometrics system, terrestrial, airborne and space-basedtracking platforms, and a social media platform; and ii) an estimatedtransaction cost associated with the service set; receiving, by thepoint of sale terminal system, a selection of a service set among theplurality of service sets; transmitting, by the point of sale terminalsystem over the electronic network, a message comprising the selectionof the service set to the payment management system; in response totransmitting the message, receiving, by the point of sale terminalsystem over the electronic network, transaction guidance from thepayment management system, the transaction guidance comprisingcomputer-executable code; aggregating, by the point of sale terminalsystem, transaction information comprising a payment amount, anencrypted primary account number, a payer ID, a payment type, and amerchant ID; executing, by the point of sale terminal system, thecomputer-executable code of the received transaction guidance;collecting, by the point of sale terminal system over the electronicnetwork and by executing the computer-executable code of the receivedtransaction guidance, the security information to be collected by thepoint of sale terminal system from the one or more sources, wherein thecollected security information comprises time-correlated locationinformation corresponding to the aggregated transaction information;transmitting, by the point of sale terminal system over the electronicnetwork, the transaction information and the collected securityinformation to the payment management system; receiving, by the point ofsale terminal system from the payment management system over theelectronic network, a transaction authorization response, an encryptedtoken, and a transaction cost; storing, by the point of sale terminalsystem, the received encrypted token in a storage device; andpresenting, via the graphical user interface of the point of saleterminal system, the received transaction authorization response and thetransaction cost.
 2. The method of claim 1, wherein the method furthercomprises receiving, by the point of sale terminal system, one or moreof: a purchaser primary credential; and a purchaser supplementalcredential.
 3. The method of claim 2, wherein the purchaser primarycredential includes information associated with a legitimate paymentaccount user; and wherein the legitimate payment account user is atleast one of a payment account owner and an authorized payment accountuser.
 4. The method of claim 2, wherein the purchaser supplementalcredential includes information associated with a payment account owner.5. The method of claim 1, wherein the collected security information iscircumstantial information associated with the aggregated transactioninformation and includes at least one of: purchase descriptiveinformation; payment descriptive information; purchaser descriptiveinformation; and measurable and derivable purchase and paymentcoincidental information.
 6. The method of claim 1, wherein thetransaction cost is determined based on at least one of the quality ofthe security information associated with the aggregated transactioninformation and the quantity of the security information associated withthe aggregated transaction information.
 7. The method of claim 2,wherein receiving the one or more of the purchaser primary credentialand the purchaser supplemental credential is facilitated by the receivedtransaction guidance at least one of: prompting for the one or more ofthe purchaser primary credential and the purchaser supplementalcredential; inputting the one or more of the purchaser primarycredential and the purchaser supplemental credential; encoding the oneor more of the purchaser primary credential and the purchasersupplemental credential; and outputting the one or more of the purchaserprimary credential and the purchaser supplemental credential; andwherein the transaction guidance includes at least one of: down-loadablesecurity information, purchaser primary credential, and purchasersupplemental credential acquisition technology; and securityinformation, purchaser primary credential, and purchaser supplementalcredential acquisition technology that is propagated out of band.
 8. Asystem for mitigating fraudulent activities in an electronic paymenttransaction system, the system comprising: a point of sale terminalsystem, comprising: one or more processors; a non-transitory computerreadable medium storing instructions which, when executed by the one ormore processors, cause the one or more processors to perform a methodcomprising: receiving, over an electronic network, a service setapplication from a payment management system; installing the service setapplication on the point of sale terminal system; displaying, via agraphical user interface, a plurality of service sets using theinstalled service set application, wherein each service set comprises:i) security information to be collected by the point of sale terminalsystem from one or more sources comprising: Global Positioning System(GPS), Wi-Fi and cellular networks, embeddable low power communicationdevices, public security video coverage, biometrics system, terrestrial,airborne and space-based tracking platforms, and a social mediaplatform; and ii) an estimated transaction cost associated with theservice set; receiving a selection of a service set among the pluralityof service sets; transmitting, over the electronic network, a messagecomprising the selection of the service set to the payment managementsystem; in response to transmitting the message, receiving, over theelectronic network, transaction guidance from the payment managementsystem, the transaction guidance comprising computer-executable code;aggregating transaction information comprising a payment amount, anencrypted primary account number, a payer ID, a payment type, and amerchant ID; executing the computer-executable code of the receivedtransaction guidance; collecting, over the electronic network and byexecuting the computer-executable code of the received transactionguidance, the security information to be collected by the point of saleterminal system from the one or more sources, wherein the collectedsecurity information comprises time-correlated location informationcorresponding to the aggregated transaction information; transmitting,over the electronic network, the transaction information and thecollected security information to the payment management system;receiving, over the electronic network, a transaction authorizationresponse, an encrypted token, and a transaction cost from the paymentmanagement system; storing the received encrypted token in a storagedevice; and presenting, via the graphical user interface, the receivedtransaction authorization response and the transaction cost.
 9. Thesystem of claim 8, wherein the method further comprises receiving one ormore of: a purchaser primary credential; and a purchaser supplementalcredential.
 10. The system of claim 9, wherein the purchaser primarycredential includes information associated with a legitimate paymentaccount user; and wherein the legitimate payment account user is atleast one of a payment account owner and an authorized payment accountuser.
 11. The system of claim 9, wherein the purchaser supplementalcredential includes information associated with a payment account owner.12. The system of claim 8, wherein the collected security information iscircumstantial information associated with the aggregated transactioninformation and includes at least one of: purchase descriptiveinformation; payment descriptive information; purchaser descriptiveinformation; and measurable and derivable purchase and paymentcoincidental information.
 13. The system of claim 8, wherein thetransaction cost is determined based on at least one of the quality ofthe security information associated with the aggregated transactioninformation and the quantity of the security information associated withthe aggregated transaction information.
 14. The system of claim 9,wherein receiving the one or more of the purchaser primary credentialand the purchaser supplemental credential is facilitated by the receivedtransaction guidance at least one of: prompting for the one or more ofthe purchaser primary credential and the purchaser supplementalcredential; inputting the one or more of the purchaser primarycredential and the purchaser supplemental credential; encoding the oneor more of the purchaser primary credential and the purchasersupplemental credential; and outputting the one or more of the purchaserprimary credential and the purchaser supplemental credential; andwherein the transaction guidance includes at least one of: down-loadablesecurity information, purchaser primary credential, and purchasersupplemental credential acquisition technology; and securityinformation, purchaser primary credential, and purchaser supplementalcredential acquisition technology that is propagated out of band.
 15. Anon-transitory computer readable medium storing instructions which, whenexecuted by one or more processors, cause the one or more processors toperform a method comprising: receiving, by a point of sale terminalsystem over an electronic network, a service set application from apayment management system; installing, by the point of sale terminalsystem, the service set application; displaying, via a graphical userinterface of the point of sale terminal system, a plurality of servicesets using the installed service set application, wherein each serviceset comprises: i) security information to be collected by the point ofsale terminal system from one or more sources comprising: GlobalPositioning System (GPS), Wi-Fi and cellular networks, embeddable lowpower communication devices, public security video coverage, biometricssystem, terrestrial, airborne and space-based tracking platforms, and asocial media platform; and ii) an estimated transaction cost associatedwith the service set; receiving, by the point of sale terminal system, aselection of a service set among the plurality of service sets;transmitting, by the point of sale terminal system over the electronicnetwork, a message comprising the selection of the service set to thepayment management system; in response to transmitting the message,receiving, by the point of sale terminal system over the electronicnetwork, transaction guidance from the payment management system, thetransaction guidance comprising computer-executable code; aggregating,by the point of sale terminal system, transaction information comprisinga payment amount, an encrypted primary account number, a payer ID, apayment type, and a merchant ID; executing, by the point of saleterminal system, the computer-executable code of the receivedtransaction guidance; collecting, by the point of sale terminal systemover the electronic network and by executing the computer-executablecode of the received transaction guidance, the security information tobe collected by the point of sale terminal system from the one or moresources, wherein the collected security information comprisestime-correlated location information corresponding to the aggregatedtransaction information; transmitting, by the point of sale terminalsystem over the electronic network, the transaction information and thecollected security information to the payment management system;receiving, by the point of sale terminal system over the electronicnetwork, a transaction authorization response, an encrypted token, and atransaction cost from the payment management system; storing, by thepoint of sale terminal system, the received encrypted token in a storagedevice; and presenting, via the graphical user interface of the point ofsale terminal system, the received transaction authorization responseand the transaction cost.
 16. The non-transitory computer readablemedium of claim 15, wherein the method further comprises receiving, bythe point of sale terminal system, one or more of: a purchaser primarycredential; and a purchaser supplemental credential.
 17. Thenon-transitory computer readable medium of claim 16, wherein thepurchaser primary credential includes information associated with alegitimate payment account user; and wherein the legitimate paymentaccount user is at least one of a payment account owner and anauthorized payment account user.
 18. The non-transitory computerreadable medium of claim 16, wherein the purchaser supplementalcredential includes information associated with a payment account owner.19. The non-transitory computer readable medium of claim 15, wherein thecollected security information is circumstantial information associatedwith the aggregated transaction information and includes at least oneof: purchase descriptive information; payment descriptive information;purchaser descriptive information; and measurable and derivable purchaseand payment coincidental information.
 20. The non-transitory computerreadable medium of claim 15, wherein the transaction cost is determinedbased on at least one of the quality of the security informationassociated with the aggregated transaction information and the quantityof the security information associated with the aggregated transactioninformation.